RALord is a ransomware-type program written in the Rust programming language. This malicious program encrypts files and demands payment for the decryption. On our test machine, RALord renamed the affected files by appending their names with a ".RALord" extension. For example, a file initially tit
Our analysis of ArchiveAccess reveals that its primary function is to display advertisements, classifying it as adware. Notably, several security vendors flag ArchiveAccess as malicious. As a result, the advertisements it generates can be misleading, often directing users to unreliable websites.
While investigating suspect websites, our research team discovered the asyetaprovinc[.]org rogue page. It promotes browser notification spam and redirects users to different (likely unreliable/malicious) sites. Asyetaprovinc[.]org and webpages akin to it are primarily accessed via redirects produ
Our inspection of ExpertComplete has shown that the purpose of this application is to display advertisements. Thus, we classified as adware. It is also important to note that multiple security vendors flag ExpertComplete as malicious. Thus, its advertisements can be deceptive and promote untrust
This is a phishing email designed to appear as if it is notifying the recipient about an approved dispute claim for charges on their credit card. Scammers utilize this scam email to deceive recipients into entering personal details on a fake web page. This email should be ignored. The emai
After inspecting this "Notification Summary" email, we determined that it is spam. This message notifies the recipient about files sent to them. This spam campaign promotes a phishing website targeting email account log-in credentials. The spam email with the subject "ShareFile Activity No
Chewbacca is a ransomware-type virus discovered by our researchers during a routine inspection of new submissions to VirusTotal. This malware encrypts data and demands payment for its decryption. On our testing system, Chewbacca encrypted files and appended their filenames with a ".{victim's_ID}.
We have examined the email and found that it is a phishing email designed to trick visitors into disclosing personal information on a fake web page. It is disguised as a "last reminder" regarding Two-factor authentication (2FA) from MetaMask. Whoever receives this email should ignore it to avoid p
Spectra is ransomware, which we discovered while inspecting malware samples submitted to the VirusTotal platform. We found that Spectra is based on Chaos ransomware. Once executed, it encrypts files and appends four random characters as their new extension. Also, Spectra provides a ransom note ("S
After inspecting qakabaw[.]sbs, we concluded that it is a deceptive website designed to lure visitors into accepting its notifications. If this permission is granted, qakabaw[.]sbs can deliver fake warnings and other unreliable notifications. Therefore, qakabaw[.]sbs should be avoided. The