Our researchers discovered ConnectionHandler while browsing new submissions to the VirusTotal platform. After examining this app, we determined that it is adware from the AdLoad malware family. ConnectionHandler is designed to feed users with unwanted and potentially malicious ads. Adwar
AssistiveLibrary is an adware-type app discovered by our research team during a routine inspection of file submissions to the VirusTotal platform. Upon examination, it was determined that this application belongs to the AdLoad malware family. Software within this classification generates revenue
"Email Account Requires Verification" is a spam email. It makes false claims concerning a critical verification process, skipping which may result in users losing access to their mail accounts. This spam letter aims to steal recipients' email accounts by tricking them into providing their log-in c
After inspecting the "Messages Have Been Blocked By Your Server" email, we determined that it is spam. The letter falsely claims that a message has been blocked from reaching the inbox. The purpose of this spam mail is to deceive recipients into disclosing their email account log-in credentials to
Risen is a ransomware variant that our team discovered during an analysis of samples uploaded to the VirusTotal platform. We learned that Risen encrypts (and renames) files, creates two ransom notes ("$Risen_Note.txt" and "$Risen_Guide.hta", changes the desktop wallpaper, and presents a message on
GuardZoo is a malware based on the Dendroid RAT (Remote Access Trojan) that was leaked in 2014. GuardZoo has been widely used to conduct surveillance and espionage operations. Among the malware's capabilities are device location tracking and file stealing features. GuardZoo is involved in a campa
SMS Stealer targeting Android users is malicious software designed to secretly access and extract text messages from a victim's device. This threat can compromise personal information without the user's knowledge. Thus, Android users should be careful and employ security measures to avoid this mal
OneStart is a browser based on the Chromium open-source project. It is promoted as an AI (Artificial Intelligence) assisted browser that provides easy access to various tools and services. OneStart also creates a desktop toolbar. This browser may infiltrate systems by being bundled with other app
While inspecting BasicApplication, we found that it generates annoying advertisements. Thus, we classified BasicApplication as adware. Typically, software of this type is distributed using questionable methods and promoted as some useful tool. Thus, users often install it without knowing it will
After examining the "Official Notification: Performance Evaluation Access" email, we determined that it is spam. Presented as a workplace performance evaluation report, this scam letter aims to trick recipients into visiting a phishing site that targets email account log-in credentials. Th