During our inspection of Koaiw App, we learned that this app does not have any useful functions. Moreover, we discovered that its components are used to deliver a malware loader called Legion Loader. Additionally, Koaiw App has been flagged as malicious by multiple security vendors. Thus, if insta
Our inspection of the "International Lottery & Totalizator Systems" email revealed that it is spam. This message claims that the recipient has won 5.5 million USD. The purpose is to deceive them into disclosing personal information and possibly luring victims into transferring funds to scamme
We have reviewed the email and determined that it is a scam. The message falsely claims that the recipient has won a large sum of money. Scammers behind this email attempt to to trick recipients into taking actions that could result in financial loss and (or) information theft. It is important to
Our analysis of the email has revealed that it is a fraudulent email used to deceive recipients into believing they can receive a large sum of money. Scammers commonly use such emails to steal money and (or) personal information. This particular email exhibits traits of an advance-fee scam. Recipi
"PayPal - You Added A New Address" is an email spam campaign with several message variants. Essentially, these emails are disguised as alerts from PayPal claiming that a new address was added to the account. In some cases, there are mentions of an expensive purchase that the account's owner has no
Our analysis shows that it is a fake email pretending to be a payment confirmation notification from the HSBC bank. The fraudsters behind this scam email aim to trick recipients into disclosing personal information and (or) paying fake fees. Such emails are called phishing attempts. Recipients sho
We have examined networktargetflow.co[.]in and learned that it hosts the "You've Visited Illegal Infected Website" scam and wants to show notifications. Usually, when deceptive websites are allowed to send notifications, they bombard users with misleading ads, fake warnings, and other messages.
Our researchers found Utoaqk App while investigating an installer promoted by the getpremiumapp[.]monster rogue website. This software is a PUA (Potentially Unwanted Application). Most apps within this classification have harmful abilities; Utoaqk App introduces Legion Loader malware into systems
We have analyzed Danger and found that it is ransomware belonging to the GlobeImposter family. Upon execution, Danger encrypts files and appends ".danger" to them. It also creates a file ("HOW_TO_BACK_FILES.html") containing a ransom note. Our discovery of Danger occurred during the inspection of
We have found that sweepoffer[.]info presents deceptive content. Its purpose is to receive permission to show notifications. As a rule, when such a site has permission to deliver notifications, it promotes other dubious web pages, scams, unwanted apps, etc. It is highly advisable not to agree to r