"Fake Unarchiver" refers to a stealer-type malware targeting Mac devices. It imitates The Unarchiver utility freeware. As the classification implies, this malicious program is designed to steal information from infected systems and installed applications. Fake Unarchiver targets various log-in c
While investigating dubious websites, our research team discovered the webetes[.]org rogue page. Upon examination, we learned that it promotes browser notification spam and redirects users to different (likely untrustworthy/harmful) sites. Most visitors to webetes[.]org and similar pages access t
Our inspection of the "Emails Need Your Attention" message revealed that it is spam. It states that emails were blocked from reaching the inbox due to security concerns. The recipient is encouraged to review the withheld messages, and those who are tricked – enter a phishing website that targets e
Our research team discovered the Datablack ransomware during a routine inspection of new file submissions to the VirusTotal site. Ransomware is designed to encrypt data and demand payment for its decryption. On our testing system, Datablack encrypted files and altered their filenames. Original ti
Banshee is a stealer-type malware targeting Mac Operating Systems (OSes). This malicious program can extract and exfiltrate data relating to the system, browsers, and cryptocurrency wallets. Primarily, Banshee seeks log-in credentials and finance-related information. Following successful
Aeetesnow[.]org is a rogue webpage discovered by our research team during a routine examination of suspect sites. It operates by promoting browser notification spam and redirecting users to other (likely unreliable/dangerous) websites. The majority of visitors to aeetesnow[.]org and webpages akin
While inspecting new malware submissions to the VirusTotal platform, we discovered the Allarich ransomware. Malicious software within this classification is designed to encrypt files and demand payment for the decryption. After we launched a sample of Allarich on our test system, it encrypted fil
After inspecting the "Webmail - Mail Basic" email, we determined that it is spam. This fake message claims that the email security server was updated and a new mailbox was set up. The recipient can configure and begin using the nonexistent account by following the linked website, which is a phishi
While browsing file submissions to the VirusTotal site, our researchers discovered the Capmaking.app adware. Upon a closer inspection, we learned that it is part of the Pirrit adware family. Advertising-supported software is designed to generate revenue for its developers/publishers through adve
Our examination of the "Adobe Contract Agreement" email revealed that it is spam. This deceptive mail lures recipients into visiting a phishing website that targets email account log-in credentials by baiting them with a nonexistent contract document. Victims of this scam letter risk having their