Woiap WApp is a PUA (Potentially Unwanted Application) discovered by our researchers while analyzing a rogue installation setup. This installer also included the fake "Save to Google Drive" browser extension. Note that setups of this kind could contain other suspicious and possibly dangerous softw
While investigating new submissions to the VirusTotal website, our research team discovered the Purgatory ransomware. This malicious program operates by encrypting files and demanding payment for the decryption. Once we launched a sample of Purgatory on our testing system, it encrypted files and
After inspecting this "Standard Bank UCount Rewards" email, we determined that it is fake. The spam message states that Standard Bank is giving away UCount reward points, and the recipient can claim and activate theirs by following the link provided in the email. It must be stressed that the info
Our research team found the miboxpixorerealpath[.]com rogue page while browsing suspicious websites. After investigating this webpage, we determined that it promotes deceptive content and browser notification spam. Additionally, it can redirect users to other (likely unreliable/malicious) sites.
After inspecting this "Salary Review" email, we determined that it is spam. It masquerades as a notification from the recipient's HR (Human Resources)/ payment management department announcing the launch of a salary review portal. The goal of this scam message is to lead recipients to a phishing s
Upon reading this "Federal Reserve Award" email, we learned that it is spam. The letter claims that the recipient has been selected to win a three million USD reward. The information in this email is false and not associated with any legitimate entities. The spam email with the subject "Br
Our analysis of advprotocol[.]xyz shown that this page uses clickbait to obtain permission to send notifications. Once allowed, advprotocol[.]xyz can send fake system warnings and other misleading notifications. Therefore, advprotocol[.]xyz and similar web pages should not be given this permission
ClickFix scams trick users into running malicious commands by pretending to solve issues like fixing website errors or performing other steps. Ultimately, victims are tricked into taking actions that cause computer infections. These scams can lead to various issues, including data theft and unau
CatLogs is the name of a stealer-type malware. This information-stealing malicious program can also function as a keylogger, clipper, RAT (Remote Access Trojan), and ransomware. CatLogs is a multi-functional malicious program. It has anti-analysis capabilities, specifically – detecting whe
After analysis, our team has determined that forexpulse[.]site is a fraudulent website aimed at deceiving visitors into granting notification permissions. Once allowed, the site can send misleading notifications to direct users to unreliable websites. Thus, it is recommended to avoid this page.