While inspecting new file submissions to the VirusTotal site, our researchers discovered the PrimaryBalance adware. This application belongs to the AdLoad malware family. PrimaryBalance is designed to generate revenue for its developers through advertising. Adware stands for advertising-
Our analysis of ExecutiveSection shows that this application is designed to display advertisements. Therefore, we classified it as adware. Additionally, we found that ExecutiveSection has been flagged as malicious by multiple security vendors. Users should not trust ExecutiveSection and remove i
Our research team found FeedNames while inspecting new submissions to the VirusTotal website. Upon analysis, we learned that this application is classified as adware. FeedNames is part of the AdLoad malware family. Advertising-supported software is designed to generate revenue for its developers
After inspecting PrimaryAnalog, we found it to be an unwanted application with adware characteristics. It generates intrusive ads that may lead to unreliable websites. Also, security vendors have flagged the app as malicious. Users should avoid installing PrimaryAnalog and remove it if it is alr
Our researchers discovered xdefender[.]site while investigating dubious websites. Upon examination, we learned that this rogue page endorses browser notification spam and generates redirects to different (likely unreliable/harmful) sites. Visitors to xdefender[.]site and similar webpages primaril
We have inspected WebProcesser and determined that it is an unwanted application with adware qualities. It is designed to display intrusive advertisements that can promote various scams and other shady web pages. Thus, users should avoid installing WebProcesser and remove it if it is already pre
While browsing suspicious websites, our research team discovered the premiumnetwork.co[.]in rogue page. It operates by promoting browser notifications spam and redirecting visitors to other (likely untrustworthy/hazardous) sites. Most users access premiumnetwork.co[.]in and analogous websites via
During our inspection, we found that proninemons[.]com uses a misleading method to lure visitors into granting it permission to display notifications. Once this permission is given, proninemons[.]com sends fake notifications to deceive users into clicking them. Thus, proninemons[.]com should not b
We have inspected Anubi (Anubis) and found that it is ransomware identical to Louis, Innok, and BlackPanther. It encrypts files and appends the ".Anubi" extension to them. Also, it changes the desktop wallpaper and provides a ransom note ("Anubi_Help.txt"). Additionally, Anubi displays a note on t
We have inspected sldefender[.]pro and discovered that it uses clickbait to trick visitors into agreeing to receive notifications. If permission is granted, sldefender[.]pro sends deceptive notifications that can lead to untrustworthy and potentially malicious websites. Overall, sldefender[.]pro s