Our research team discovered bavergenomwer[.]com while browsing dubious websites. Upon examination, we learned that it is a rogue page promoting browser notification spam and generating redirects to other (likely unreliable or harmful) sites. Users most commonly enter webpages like bavergenomwer[
Our researchers found the alphapcnetwork[.]com rogue page while investigating questionable websites. Upon inspection, we determined that this webpage promotes spam browser notifications and redirects to other (likely dubious/dangerous) sites. Users mainly enter pages like alphapcnetwork[.]com via
OriginRemote is a rogue application discovered by our researchers during a routine investigation of new submissions to the VirusTotal website. After analyzing this app, we learned that OriginRemote is adware from the AdLoad malware family. Advertising-supported software is designed to run intrus
Our research team discovered RDanger ransomware while reviewing new file submissions to the VirusTotal website. This malware is designed to encrypt data and demand ransoms for the decryption. After we launched a sample of RDanger on our test machine, it encrypted files and appended their filename
While investigating new file submissions to the VirusTotal site, our researchers discovered the ModuleUpdater application. After examining this piece of software, we determined that it is adware. ModuleUpdater is part of the AdLoad malware group. Adware stands for advertising-supported s
H0rus is a ransomware-type program discovered by our researchers during a routine inspection of new file submissions to the VirusTotal platform. Malware of this kind is designed to encrypt data and demand payment for the decryption. On our testing system, it encrypted files and added a ".h0rus13"
We discovered SystemRecord while investigating new file submissions to the VirusTotal platform. After analyzing this application, we learned that it is advertising-supported software (adware). SystemRecord is part of the AdLoad malware family. The purpose of adware is to generate revenue
Our researchers discovered the Movidown application while investigating a website that uses rogue advertising networks. The site generated a redirect landing on a scam page promoting an installer under the guise of a movie download. After inspecting Movidown, we determined that it is a PUA (Poten
After examining the "Invoice Online Document Is Ready" email, we determined that it is spam. It is presented as a notification concerning an invoice document sent to the recipient. The purpose of this scam message is to steal recipients' email accounts, and this is achieved via the promoted phish
Our researchers found the MapperRanking application while reviewing file submissions to the VirusTotal site. After inspecting this app, we determined that it is advertising-supported software (adware) from the AdLoad malware family. MapperRanking is designed to run intrusive advertisement campai