In our analsyis of madrinabee[.]com, we discovered that this page displays deceptive content and requests permission to show notifications. If permitted, madrinabee[.]com can deliver misleading notifications to trick users into opening other shady sites. Thus, this and the associated websites shou
Our researchers discovered OpticalManager during a routine inspection of new file submissions to the VirusTotal platform. After examining this app, we learned that it is adware. OpticalManager belongs to the AdLoad malware family. Advertising-supported software is designed to deliver intrusive a
We have inspected gounrical[.]com and found that this site presents a misleading message to lure visitors into granting it permission to show notifications. If allowed, gounrical[.]com sends deceptive notifications (e.g., fake warnings) to promote scams and other unreliable content. On gou
We have reviewed the email and found that it is a scam. This email is disguised as a notification from Netflix regarding the suspension of the account. Its purpose is to trick users into disclosing personal information on a fake web page. Such emails are known as phishing attempts, and they should
Our team has examined SimpleOptimizer and discovered that security vendors flag it as malicious, and the app itself has qualities of adware. Installing it can flood users with intrusive and deceptive ads that expose them to potentially malicious sites. Thus, SimpleOptimizer should not be trusted
While inspecting new submissions to the VirusTotal website, our researchers found the MajorBuffer application. After examining it, we determined that this app is adware (advertising-supported software) from the AdLoad malware family. Adware is designed to generate revenue for its develop
Pe32s is a piece of malicious software classed as ransomware. It operates by encrypting data and demanding ransoms for the decryption. After we executed Pe32s on our test machine, it encrypted files and altered their names. The titles were modified following this pattern – "[org_filename].[victim
Celestial is a stealer written in JavaScript. As the classification implies, this malware steals information from systems and installed programs. This stealer targets Windows 10 and 11 operating systems. Celestial is offered as MaaS (Malware-as-a-Service) in multiple configurations for various pa
Spectrum is a piece of malware written in the Go programming language, specifically designed to steal sensitive information from infected devices. Due to this functionality, it is categorized as an information stealer. Spectrum should be eliminated as soon as possible if present on the system.
Found-cash-now[.]com is a rogue page discovered by our research team during a routine investigative session into questionable sites. Upon inspection, we learned that it endorses browser notification spam and generates redirects to other (likely unreliable/dangerous) websites. The majority of visi