Dark 101 is a ransomware-type program based on Chaos discovered by our researchers during a routine inspection of new submissions to VirusTotal. This malicious software operates by encrypting data and demanding ransoms for its decryption. On our test machine, Dark 101 encrypted files and appended
Our team has analyzed gentwoleads[.]top and concluded that it is a fraudulent web page designed to trick visitors into permitting it to show notifications. Gentwoleads[.]top can present fake warnings and other misleading notifications to lure users into opening unreliable sites. Thus, this page sh
We have inspected fastconnectionflow[.]com and learned that it runs the "You've visited illegal infected website" scam. The site also requests permission to show notifications. When users agree to receive such notifications, they are bombarded with fake warnings, alerts, and other deceptive conten
We have inspected the website and concluded that it is a scam designed to lure unsuspecting users into disclosing information and transferring money to scammers. The site claims that individuals have an uncollected transaction and can receive a specific sum of cryptocurrency by following the provi
Our research team found the networkpartialchain.co[.]in rogue page while browsing suspect websites. Upon examination, we learned that it endorses scams and browser notification spam. The webpage also redirects users to other (likely untrustworthy/hazardous) webpages. Most visitors access networkp
Our researchers found the "Failed To Remove Viruses" scam while investigating untrustworthy sites. It claims that high-risk viruses have been detected on the user's device. The scheme urges them to activate the anti-virus. Typically, scams of this kind are used to endorse unreliable and even harmf
"Safety Warning" is a multi-variant scam that warns users of various fake threats present on their devices. Often, the purported source is a visit(s) to a compromised/malicious site(s). The schemes hide under the names of legitimate software/services, which are then supposedly used to perform syst
During our analysis of search-globe.com, we found that while the site seems to be a search engine, it fails to produce any results. For this reason, we have classified search-globe.com as a fake search engine. It is important to note that websites like this are often distributed via extensions tha
Newstargetingads[.]top is a rogue webpage discovered by our researchers during a routine inspection of suspicious sites. After examining this page, we determined that it promotes browser notification spam and produces redirects to different (likely dubious/dangerous) websites. The majority of vis
Mania Crypter is ransomware based on LockBit Black. It encrypts and modifies files (appends a random extension), changes the desktop wallpaper, and provides a ransom note ("[random_string].README.txt"). Here is an example of how encrypted files are renamed: "1.jpg" is changed to "1.jpg.utZMwPnzM",