Our discovery of Starcat occurred while inspecting malware samples submitted to VirusTotal. Upon examining Starcat, we concluded that it is ransomware that encrypts files (and makes them hidden after encryption) on the infected device. Also, Starcat changes the desktop wallpaper, creates a ransom
Our team has inspected the email and discovered that it is designed to trick recipients into believing they have received a document and follow the provided instructions. The ultimate goal is to extract personal information via a fake web page. In essence, this is a phishing email and it should be
After testing the Adblock Bear - stop invasive ads extension, we concluded that it functions as adware and includes extra features. While intended to block ads, it actually displays its own advertisements. Users should be cautious of adware-like extensions and remove them if they are added.
DarkNimbus is a backdoor-type malware. There are two versions of this software, one targeting Windows operating systems and the other – Android. Generally, backdoors are used to open a "backdoor" to devices in order to prep them for further infection or cause it. However, DarkNimbus has many capab
After inspecting this "John Travolta Foundation" email, we determined that it is spam. This message claims that the recipient has received an incredibly large sum from the "John Travolta Foundation". It must be emphasized that this email is not associated with any real public figures or foundatio
While browsing suspicious sites, our researchers discovered the gembujabbercaseroobox[.]com rogue webpage. We found that it promotes dubious software and browser notification spam. Additionally, this page can redirect visitors to different (likely untrustworthy/hazardous) sites. Webpages like gem
Search-2go.com is a fake search engine. Like most pages of this kind, it cannot provide search results and redirects users to legitimate Internet search websites. It is noteworthy that search-2go.com has been observed featuring as an intermediary in redirection chains caused by browser hijackers.
Search-owl.com is the address of a fake search engine. Unlike most websites of this kind, it can provide search results, but they are inaccurate and may include deceptive content. Search-owl.com likely collects information about its visitors as well. Typically, fraudulent search engines are promot
Realst is a malicious program designed to steal sensitive data, such as log-in credentials, cryptocurrency wallets, and credit card details. There is also a version of Realst that targets Mac operating systems. Recently, this malware was observed being proliferated using sophisticated social engin
While testing MicroCoordinator, we noticed that it delivers unwanted and often annoying advertisements. Therefore, we classified MicroCoordinator as adware. It is worth noting that multiple security vendors flag this app as malicious. Users should avoid installing MicroCoordinator and remove it