Our researchers discovered avastosgr[.]fun while investigating unreliable websites. After analyzing this rogue page, we learned that it promotes online scams and browser notification spam. Additionally, the webpage can redirect visitors elsewhere (likely untrustworthy/dangerous sites). The majori
Our examination of the Joas App revealed no discernible functionality. However, we found that it is delivered through dubious channels and is used to distribute Legion Loader (and is likely bundled with other unwanted software or other suspicious elements). Consequently, we have categorized the Jo
Our research team discovered EssentialOperation while inspecting new submissions to the VirusTotal website. After investigating this app, we learned that it is adware. EssentialOperation is part of the AdLoad malware family. Advertising-supported software generates revenue for its develo
Our research team found the RunningProgram app while inspecting file submissions to the VirusTotal site. Upon analyzing this piece of software, we determined that it is adware from the AdLoad malware family. RunningProgram operates by running intrusive advertisement campaigns. Adware is
While investigating file submissions to the VirusTotal website, our research team discovered the AdminFlow application. Our examination revealed that it is adware belonging to the AdLoad malware family. AdminFlow is designed to generate revenue for its developers through advertising. Typ
During our investigation of SampleUpdater, we found it to be a dubious application exhibiting adware characteristics. Once installed, SampleUpdater bombards users with intrusive and deceptive advertisements. Additionally, our analysis shows that numerous security vendors classify SampleUpdater a
SAGE 2.2 is an updated version of the Sage ransomware. This malware encrypts files, appends its extension (".sage") to files, and displays a ransom note "!HELP_SOS.hta". Additionally, SAGE 2.2 changes the desktop wallpaper. An example of how the ransomware renames files: it changes "1.jpg" to "1.j
In our examination of OnlineProcesser, we discovered that it is an untrustworthy application with adware traits. Upon installation, OnlineProcesser displays intrusive and often misleading advertisements. Our analysis also reveals that multiple security vendors flag OnlineProcesser as malicious.
We have examined acishlor[.]com and discovered that it uses clickbait, a misleading tactic, to get permission to send notifications. Once acishlor[.]com has this permission, the site bombards users with fake warnings and other notifications. Therefore, users should never agree to receive notificat
OpticalNetwork is an adware-type app discovered by our researchers while reviewing new file submissions to the VirusTotal platform. This application belongs to the AdLoad malware family. Software within this classification is designed to generate revenue through advertising. Typically, adware o