Our examination has revealed that End is ransomware from the MedusaLocker family. We came across this ransomware while analyzing malware samples uploaded to VirusTotal. After execution, End encrypts files, appends the ".end11" extension, changes the desktop wallpaper, and drops a ransom note ("HOW
We have analysed the message and concluded that it is a phishing email disguised as an important notification from the email service provider. It is used to steal personal information. Scammers aim to trick recipients into opening a fake website and disclosing login credentials. Such messages shou
We have tested DailyHandler and found that it operates as adware and is flagged as malicious by multiple security vendors. Once installed, it can frequently display intrusive and deceptive ads that may expose users to scam websites and other unreliable sites. Affected users should uninstall Dail
We have inspected the email and concluded that it is a phishing message designed to trick recipients into opening a fake website. The scammers behind this scam aim to steal personal information via a deceptive login page. Recipients should not trust this email and delete it. The email clai
Our analysis shows that BalanceOptimizer is adware, which is classified as malicious by a number of security vendors. Upon installation, the app can bombard users with annoying, misleading advertisements that promote potentially malicious websites. Users should avoid installing BalanceOptimizer
Reynolds is ransomware that encrypts files, appends the ".locked" extension, and creates a ransom note ("___RestoreYourFiles___.txt"). An example of how files are renamed: "1.jpg" becomes "1.jpg.locked", "2.png" becomes "2.png.locked", "3.exe" becomes "3.exe.locked", etc. Reynolds uses a techniqu
During our inspection, we found that zravonira[.]com is a deceptive website designed to trick visitors into granting it permission to show notifications. If this page is allowed to send notifications, it bombards users with fake warnings and other misleading messages that can expose them to scams
MackDEV is ransomware, a type of malware designed to encrypt files and used to extort money. In addition to encrypting data, MackDEV renames files by appending the ".MackDEV" extension. For instance, it changes "1.jpg" to "1.jpg.MackDEV" and "2.png" to "2.png.MackDEV". A ransom note ("MackDEV_READ
During our inspection of malware samples submitted to VirusTotal, we discovered IdontCareLOck and uncovered that it is ransomware. Once launched on a device, IdontCareLOck encrypts files, changes the desktop wallpaper, creates a ransom note ("IdontCareLOck.txt"), and appends its extension (".Idont
We have inspected the message and found that it is a phishing email posing as a notification regarding downloaded files. Its purpose is to trick recipients into opening the included website. That site is designed to appear official to trick visitors into disclosing personal information. Th