Craxsrat is a ransomware-type program that our researchers discovered during a routine inspection of new submissions to the VirusTotal website. Malware within this classification is designed to encrypt files and demand payment for the decryption. On our test machine, Craxsrat encrypted files and
We examined lightspeedcon.co[.]in and found that it uses clickbait to trick visitors into permitting it to show notifications. After gaining permission, the site bombards users with misleading notifications promoting untrustworthy websites. As a result, lightspeedcon.co[.]in should not be trusted
TsarBot is a multi-functional malware targeting Android devices. Specifically, it is a banking trojan designed to obtain information associated with over 750 finance-related applications from various regions. TsarBot has been targeted at users located in Australia, France, India, Poland, the Unit
We have examined the app and discovered that it has qualities of adware. Upon installation, SoftwareIndexer displays annoying advertisements. The ads generated by SoftwareIndexer can lead to unreliable websites, as multiple security vendors identify the app as malicious. Thus, users should avoid
We have reviewed the email and concluded that it contains a fraudulent notification regarding an "unclaimed prize". Fraudsters use it to deceive unsuspecting recipients into disclosing personal information and likely paying some fake fees. Recipients should not respond to this email. This
Our examination of this "DocuSign - Signature Requested" email revealed that it is spam. This fake message notifies the recipient that they need to sign a document, thus it lures them into visiting a phishing site that targets email log-in credentials. It must be emphasized that this email is not
Equalecioncers[.]com is a rogue webpage discovered by our researchers during a routine investigation of suspicious websites. This page operates by promoting browser notification spam and redirecting visitors to different (likely unreliable/malicious) sites. Most users access webpages like equaleci
After inspecting this "IMAP/POP3 Mail Delivery Incomplete" email, we determined that it is fake. This spam message claims that five emails failed to reach the recipient's inbox, and three were deleted. The goal of this mail is to deceive recipients into disclosing their email account log-in creden
Cyb3r Drag0nz is a ransomware-type program designed to encrypt data and demand ransoms for the decryption. After we executed a sample of this malware on our test machine, it encrypted files and added a ".Cyb3rDrag0nz" extension to their names. For example, an original filename like "1.jpg" appear
DefaultArchive is a rogue app discovered by our researchers during a routine inspection of new file submissions to the VirusTotal website. Our examination revealed that this application is advertising-supported software (adware). DefaultArchive is part of the AdLoad malware family. Adwar