Cash is the name of a Remote Access Trojan (RAT). Malware within this classification is designed to allow remote access and control over compromised machines. This trojan was first observed in 2022, with its latest version emerging in the spring of 2024. The initial variant of Cash had significant
DeerStealer is an information stealer distributed via the Google search engine through fake Google ads. Cybercriminals target users by presenting malicious ads that appear legitimate, tricking them into downloading the stealer. Once on the victim's machine, DeerStealer can harvest sensitive inform
During our examination of searchresultsadblocker.com, we found that it is a fake search engine promoted via a browser hijacker (an unwanted extension). Typically, users add extensions promoting addresses like searchresultsadblocker.com unintentionally. It is important for users to be cautious of s
News-xofapi[.]com is a rogue webpage discovered by our researchers during a routine inspection of suspicious sites. After reviewing this page, we learned that it endorses browser notification spam and redirects users to other (likely untrustworthy/malicious) websites. Visitors primarily access we
LockBit 5 is ransomware (a type of malware that encrypts files). In addition to encrypting files, LockBit 5 appends its extension (random characters) to filenames. Also, this ransomware changes the desktop wallpaper and provides a ransom note. The name of its ransom note consists of its extension
Our inspection of the "Email Password Must Renew Soon" email revealed that it is spam. This hoax message informs recipients that their email account password will expire soon. The goal is to trick them into disclosing their account log-in credentials to a phishing website. The spam email w
Our analysis of secochkd[.]xyz has shown that it is a deceptive website designed to trick visitors into accepting its notifications. Users are strongly advised against agreeing to receive notifications from such pages, as their notifications can lead to malicious web pages. Secochkd[.]xyz
Upon reviewing Innless.app, we discovered that it is designed to bombard users with intrusive advertisements. As a result, we have classified Innless.app as adware. Moreover, we found that this particular adware belongs to the Pirrit family. Users should avoid installing Innless.app and remove i
We have inspected this email and found that it is written by scammers who aim to extract personal information from recipients. The email masquerades as a notification regarding a system error in the email server. Such emails are called phishing emails, and recipients are strongly advised to ignore
Our researchers discovered ConnectionHandler while browsing new submissions to the VirusTotal platform. After examining this app, we determined that it is adware from the AdLoad malware family. ConnectionHandler is designed to feed users with unwanted and potentially malicious ads. Adwar