During our inspection of malware samples uploaded to VirusTotal, we discovered LQTOREQ, which is ransomware designed to encrypt files. Also, LQTOREQ appends the ".lqtoreq" extension to files. For instance, it renames "1.jpg" to "1.jpg.lqtoreq", "2.png" to "2.png.lqtoreq", and so on. Additionally,
We have analyzed the message and concluded that it is a phishing attempt. It is disguised as a notification from the email service provider. The purpose of this message is to trick recipients into believing that they have to follow the provided instructions to fix the issue that has supposedly occ
A0Backdoor is a backdoor malware delivered using a malicious DLL sideloading technique. The malware includes anti-sandbox features to evade detection and communicates via a hidden DNS-based command-and-control channel. Having a device infected with A0Backdoor can lead to further infections and ser
EtherRAT is a remote access Trojan (RAT) that gives attackers remote control over infected devices. It was first discovered in late 2025 and has been used in advanced attacks targeting both Linux and Windows systems. It is known that EtherRAT is now delivered through a fake installer that looks li
We have examined searchscr.com and determined that it is a fake search engine. It can lead users to questionable pages and may be associated with unwanted extensions classified as browser hijackers. Users should use only legitimate search engines to avoid the risks associated with sites like searc
Our team has tested dinosrchius.com and found that it is a questionable search engine. It means it may generate unwanted, potentially misleading results. It is worth mentioning that such search engines are often pushed through browser hijackers. Users should avoid using dubious search engines and
We have analyzed this scam and found that it involves at least two websites (xamanwallet-token[.]pro and xaman-wallet[.]com). It imitates the original Xaman platform (xaman.app) to appear legitimate. The purpose of this fraudulent scheme is to trick visitors into taking actions that can result in
Our team has inspected the message and concluded that it is a phishing email designed to appear as an important notification from the email provider. Its purpose is to trick recipients into opening the provided website. That page is controlled by scammers who seek to steal personal information.
Our inspection has revealed that this is a scam email posing as a security-related notification from the email service provider. Its purpose is to lure recipients into a fraudulent page designed to pilfer personal information. Stolen details can be used to hijack personal accounts and for other ma
We have analyzed the email and found that it is disguised as a "secured message" from the Canada Revenue Agency. In reality, it is a phishing email written by fraudsters who aim to steal personal information via a fake website. Falling for this scam can result in account compromise and further pro