Our analysis of the Ervoql App reveals that it is an unwanted application that lacks clear functionality and is bundled with Legion Loader. Installing it can cause serious issues due to the included malware's capability. Users are strongly advised to avoid installing Ervoql App and to remove it im
Our researchers found the adsforleads[.]top rogue page while investigating dubious websites. After examining this webpage, we learned that it promotes browser notification spam and produces redirects to other (likely unreliable/hazardous) sites. Users primarily access adsforleads[.]top and websit
Our researchers discovered Lucky ransomware while browsing file submissions to VirusTotal. This program is part of the MedusaLocker ransomware family. Malware of this kind encrypts data and demands payment for the decryption. After we executed a sample of Lucky (MedusaLocker) ransomware on our te
FOX is ransomware belonging to the Dharma family. Our discovery of FOX occurred during the inspection of malware samples submitted to VirusTotal. Since FOX is ransomware, it encrypts files and provides a ransom note (in a pop-up message and "info.txt" file). Also, this ransomware appends the victi
Our researchers discovered the truthwasisadl[.]org rogue page during a routine investigation of suspect websites. It promotes browser notification spam and produces redirects landing on other (likely dubious/hazardous) sites. Truthwasisadl[.]org and similar webpages are primarily accessed via red
NailaoLocker is a ransomware-type program written in the C++ programming language. It encrypts victims' files to demand payment for the decryption. On our test machine, the malware encrypted files and appended their names with a ".locked" extension. For example, a file initially titled "1.jpg" be
We have inspected windtrackr[.]site and concluded that it is one of the many web pages designed to obtain permission to show notifications through clickbait (a deceptive technique). Moreover, when users permit sites like windtrackr[.]site to show notifications, they often receive fake warnings, al
Cowboy Stealer is information-stealing malware written in the Go programming language. Cybercriminals typically use this type of malware to harvest credentials, financial data, and other valuable information. If detected on the system, Cowboy Stealer should be eliminated as soon as possible.
Our research team found the unveriumenflue[.]com rogue page during a routine investigation of untrustworthy sites. After inspecting this webpage, we learned that it promotes browser notification spam and generates redirects to other (likely dubious/dangerous) websites. Most visitors access unveri
Our research team discovered the tripleads[.]top rogue page while investigating dubious websites. Upon examination, we determined that it promotes browser notification spam and redirects users to other (likely unreliable/harmful) sites. Most visitors to tripleads[.]top and analogous webpages acce