During our analysis of malware samples uploaded to VirusTotal, we discovered Root, a ransomware variant belonging to the MedusaLocker family. We found that Root encrypts and renames files, and provides a ransom note ("How_to_back_files.html"). It appends the ".root4" extension to filenames (the nu
After reviewing aroidsguide[.]com, our team determined that it is not a reliable website designed to obtain permission from visitors to send notifications through a technique known as clickbait. If allowed, aroidsguide[.]com can send misleading notifications. Therefore, users should not agree to r
Upon inspecting aroidssolutions[.]com, our team concluded that it is not a trustworthy website. The site uses deception to receive permission from visitors to send them notifications. Also, once allowed, aroidssolutions[.]com can deliver misleading notifications. Thus, users should avoid opening a
While investigating dubious websites, our researchers discovered the adrgyouweb[.]com rogue page. Upon inspection, we determined that it promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Most visitors to adrgyouweb[.]com and webpages akin to it a
Boot-upprogressiveextremelythe-file[.]top is the address of a rogue page discovered by our researchers during a routine inspection of suspect websites. This webpage promotes spam browser notifications and redirects visitors to different (likely dubious/malicious) sites. The majority of users acce
Our research team discovered allsidestv[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and redirects users to different (likely untrustworthy or dangerous) sites. The majority of visitors to allsidestv[.]com an
Amnesia is the name of a malicious program. There are two variants of this malware – for Windows and Android operating systems. The program aims to extract various types of sensitive data from infected machines – thus, it is classed as a stealer. However, Amnesia also exhibits RAT (Remote Access
Our team has analyzed andespeaks[.]top and learned that its purpose is to obtain permission to send notifications to users. This website employs a deceptive technique to trick users into granting it this permission. Thus, users should avoid visiting andespeaks[.]top and similar web pages.
Our researchers discovered Mr.Dark101 ransomware while browsing file submissions to the VirusTotal website. This malware is based on Chaos ransomware. Mr.Dark101 is designed to encrypt data and demand payment for the decryption. After we executed a sample on our testing system, the ransomware enc
BlackNote is an information stealer that targets various sensitive information. Stealers often operate stealthily, collecting data from infected devices to send to remote servers controlled by threat actors. This malware poses significant risks to user privacy and security. If BlackNote has infilt