We have inspected this email and concluded that it is a phishing attempt masquerading as a notification regarding the suspension of the recipient's MetaMask wallet. This scam email is created by scammers with the intention of extracting personal information from recipients. Whoever receives this e
Our research team found AssistField while browsing new file submissions to the VirusTotal website. After analyzing this application, we determined that it is advertising-supported software. This adware belongs to the AdLoad malware family. AssistField is designed to feed users with unwanted and
After investigating this "Wells Fargo - Unusual Account Activity" email, we determined that it is fake. The spam email claims the recipient's online bank account has been temporarily suspended due to suspicious activity. This lure tricks recipients into disclosing their account log-in credentials
Odejdi[.]info is a rogue website discovered during a routine investigation of untrustworthy sites undertaken by our researchers. This page promotes browser notification spam and redirects visitors to other (likely unreliable/hazardous) websites. Most users access odejdi[.]info and sites akin to i
Lynx is a piece of malicious software classed as ransomware. This malware encrypts files and demands ransoms for its decryption. After executing Lynx ransomware on our test machine, we found that the files it encrypts have the ".LYNX" extension appended to their names. To elaborate, a file initia
We have examined the DefaultLocator application and concluded that it functions as adware. The purpose of DefaultLocator is to bombard users with various advertisements. In most cases, users install such apps accidentally. If DefaultLocator or a similar app is installed on a computer, it should
HorrorDead is a ransomware-type program discovered by our research team during a routine investigation of new submissions to the VirusTotal platform. Ransomware is designed to encrypt files and demand payment for the decryption. On our testing system, HorrorDead encrypted files and appended their
During our analysis of ForceLock we found that it is ransomware belonging to the GlobeImposter family. Once a computer is infected, ForceLock encrypts files, appends the ".forcelock" extension to filenames, and creates a ransom note ("how_to_back_files.html"). For example, it renames "1.jpg" to "1
Our team has tested the RecordCharacter application and discovered that it generates unwanted advertisements. Apps of this type are classified as adware. In addition to displaying intrusive ads, RecordCharacter may gather various data. Users should not have apps like RecordCharacter installed on
BrowserConnection is a rogue application discovered by our researchers during a routine review of new file submissions to the VirusTotal platform. Our examination revealed that BrowserConnection is adware. It is also part of the AdLoad malware family. Adware stands for advertising-suppor