After inspecting this "Salary Review" email, we determined that it is spam. It masquerades as a notification from the recipient's HR (Human Resources)/ payment management department announcing the launch of a salary review portal. The goal of this scam message is to lead recipients to a phishing s
Upon reading this "Federal Reserve Award" email, we learned that it is spam. The letter claims that the recipient has been selected to win a three million USD reward. The information in this email is false and not associated with any legitimate entities. The spam email with the subject "Br
Our analysis of advprotocol[.]xyz shown that this page uses clickbait to obtain permission to send notifications. Once allowed, advprotocol[.]xyz can send fake system warnings and other misleading notifications. Therefore, advprotocol[.]xyz and similar web pages should not be given this permission
ClickFix scams trick users into running malicious commands by pretending to solve issues like fixing website errors or performing other steps. Ultimately, victims are tricked into taking actions that cause computer infections. These scams can lead to various issues, including data theft and unau
CatLogs is the name of a stealer-type malware. This information-stealing malicious program can also function as a keylogger, clipper, RAT (Remote Access Trojan), and ransomware. CatLogs is a multi-functional malicious program. It has anti-analysis capabilities, specifically – detecting whe
After analysis, our team has determined that forexpulse[.]site is a fraudulent website aimed at deceiving visitors into granting notification permissions. Once allowed, the site can send misleading notifications to direct users to unreliable websites. Thus, it is recommended to avoid this page.
Dark 101 is a ransomware-type program based on Chaos discovered by our researchers during a routine inspection of new submissions to VirusTotal. This malicious software operates by encrypting data and demanding ransoms for its decryption. On our test machine, Dark 101 encrypted files and appended
Our team has analyzed gentwoleads[.]top and concluded that it is a fraudulent web page designed to trick visitors into permitting it to show notifications. Gentwoleads[.]top can present fake warnings and other misleading notifications to lure users into opening unreliable sites. Thus, this page sh
We have inspected fastconnectionflow[.]com and learned that it runs the "You've visited illegal infected website" scam. The site also requests permission to show notifications. When users agree to receive such notifications, they are bombarded with fake warnings, alerts, and other deceptive conten
We have inspected the website and concluded that it is a scam designed to lure unsuspecting users into disclosing information and transferring money to scammers. The site claims that individuals have an uncollected transaction and can receive a specific sum of cryptocurrency by following the provi