Nitrogen is ransomware designed to encrypt files on the infected device. Cybercriminals were observed targeting the construction, financial services, manufacturing, and technology sectors. Upon file encryption, the targeted files have the ".NBA" extension, and a ransom note ("readme.txt") is creat
During our testing of AnalyzerFormat, we observed that it generates intrusive advertisements, a behavior commonly linked to adware. Ads displayed by adware can take users to unreliable pages and expose them to other online threats. Therefore, users should avoid installing AnalyzerFormat and elim
We have inspected yourwebarmorsolutions[.]com and discovered that this is a deceptive web page designed to present fake virus warnings. Also, it requests permission to show notifications. Users should not trust yourwebarmorsolutions[.]com to avoid scams, unwanted downloads, or other issues.
While reviewing the Triund App, we found it lacks clear functionality, making its intended purpose unclear. It is distributed through questionable channels and likely bundled with unwanted apps or other suspicious elements. Therefore, we have categorized Triund App as an unwanted application.
During our inspection of the MailCach site, we uncovered that it is a scam website offering to earn Bitcoins. We also discovered that scammers promote this scam via email. The purpose of the MailCach Bitcoin Earning scam is to steal money from unsuspecting individuals. This and similar scams shoul
Ninja Browser is a web browser based on Chromium. During our inspection, we found that it promotes a questionable search engine. Thus, Ninja Browser can expose users to unreliable websites and various online threats. Users should avoid installing Ninja Browser and eliminate the app if it is alread
Bbuild is ransomware that we discovered while analysing samples submitted to VirusTotal. It belongs to the MedusaLocker family. Upon activation, Bbuild encrypts files and appends the ".bbuild" extension to them. Also, the ransomware provides a ransom note, "HOW_TO_RECOVER_DATA.html". Here is an e
During our examination of RdpLocker, we found that it is ransomware that encrypts files, appends the ".rdplocker" extension to files, changes the desktop wallpaper, and provides a ransom note ("Readme.txt"). We discovered RdpLocker during an analysis of malware samples submitted to VirusTotal. An
We have examined notialladusdom[.]top and discovered that it employs clickbait to receive permission to send notifications. Once permitted, notialladusdom[.]top can show misleading notifications to trick users into opening questionable and potentially malicious sites. Therefore, notialladusdom[.]t
Our analysis of clickads-hub[.]top has shown that it can display different deceptive messages to lure visitors into agreeing to receive its notifications. These notifications contain fake error alerts and similar messages and promote potentially malicious sites. Therefore, users should avoid grant