In the course of our inspection of malware samples on VirusTotal, we discovered ELITTE87, a ransomware variant belonging to the Phobos family. ELITTE87 encrypts files, modifies filenames, and provides two ransom notes (displays a pop-up window and creates the "info.txt" file). ELITTE87 appends th
Enasnews.com is a rogue webpage discovered by our researchers during a routine investigation of untrustworthy sites. After inspecting this page, we determined that it promotes browser notification spam and redirects users to other (likely dubious/malicious) websites. Visitors to enasnews[.]com an
While inspecting new submissions to the VirusTotal website, our researchers found the OptimalAnalyzer application. Upon investigation, we determined that it is adware from the AdLoad malware group. OptimalAnalyzer is designed to generate revenue for its developers through advertising. Ad
Our research team found the allvissolutions[.]com rogue site while inspecting suspect webpages. It endorses browser notification spam and redirects visitors to other (likely unreliable/hazardous) websites. Most users access pages like allvissolutions[.]com via redirects caused by sites utilizing r
Our researchers discovered ExplorerRecord while investigating submissions to the VirusTotal platform. This application is adware from the AdLoad malware family. ExplorerRecord runs intrusive advertisement campaigns and may have other harmful capabilities. Adware stands for advertising-su
ExtendedModule is a rogue application we discovered while reviewing new file submissions to the VirusTotal site. After checking out this software, we determined that it is adware belonging to the AdLoad malware family. ExtendedModule is designed to feed users with unwanted and potentially malici
While browsing new submissions to VirusTotal, our researchers discovered the MatrixObsession app. Upon inspection, we determined that it is advertising-supported software (adware) from the AdLoad malware family. MatrixObsession operates by running intrusive ad campaigns, and it may possess other
While investigating dubious websites, our researchers found the nettiinc[.]com rogue page. After inspecting it, we learned that it endorses browser notification spam and redirects users to other (likely untrustworthy/dangerous) sites. Visitors mainly enter nettiinc[.]com and pages akin to it via
LocalAdmin is a rogue app discovered by our researchers during a routine inspection of new submissions to the VirusTotal website. After analyzing a piece of software, we determined that it is adware from the AdLoad malware family. Advertising-supported software generates revenue for its develope
During a routine review of new submissions to the VirusTotal website, our research team discovered GlobalAppSearch. This application runs intrusive advertisement campaigns and may have other harmful capabilities. Due to said behavior, GlobalAppSearch is classed as adware. The app is part of the