Our researchers discovered Chaddad ransomware during a routine inspection of new submissions to the VirusTotal platform. After acquiring a sample of Chaddad, we launched it on our testing system. This ransomware encrypted files on the test machine and altered their filenames. Original titles were
Lexus ransomware is a malware designed to encrypt files. We discovered it while inspecting malware samples submitted to VirusTotal. In addition to encrypting files, Lexus renames files and generates two ransom notes ("info.txt" and "info.hta"). We also found that Lexus belongs to the Phobos ransom
While browsing dubious websites, our researchers discovered reqdpro[.]club. It is a rogue page that promotes browser notification spam and redirects users to other (likely untrustworthy/hazardous) sites. Webpages like reqdpro[.]club are most commonly accessed through redirects caused by websites u
After inspecting the "Subscribed Domain Used For Spamming Purposes" email, we determined that it is spam. It makes false claims regarding the misuse of an email account associated with the recipient's domain. This phishing mail aims to deceive victims into disclosing their log-in credentials.
Our researchers discovered the us-av-protection[.]com rogue page while investigating dubious websites. After examining it, we determined that us-av-protection[.]com promotes scams and browser notification spam. It can also generate redirects to other (likely unreliable/dangerous) sites. Us-av-pro
While browsing suspicious websites, our research team discovered the tapaness[.]com rogue page. Upon analysis, we determined that tapaness[.]com endorses browser notification spam and generates redirects to other (likely dubious/malicious) sites. Most visitors to tapaness[.]com and webpages akin
Our research discovered realcitsgroup[.]com while investigating suspect websites. This rogue page promotes deceptive content and browser notification spam. Additionally, it can redirect users to different (likely unreliable/hazardous) sites. Most visitors enter realcitsgroup[.]com and similar web
Upon inspection, we determined that the "T-Mobile Network Global Funds Relief" email is spam. This fake letter proclaims that the recipient has won an exorbitant amount of money from a global relief fund. The goal of this phishing mail is to deceive recipients into disclosing their personally ide
After inspecting this "InQubeta Token Presale" event, we determined that it is fake. This scam imitates the InQubeta platform (inqubeta.co), and it uses a bogus "presale event" as a lure. Users deceived by this imitator page expose their digital wallets to a cryptocurrency drainer. Hence, victims
After investigating this "Products We Want To Purchase" email, we determined that it is malspam. This spam letter is presented as a potential purchase inquiry. Its attachment supposedly details the sought-after products, but instead, it is designed to infect recipients' devices with the Agent Tesl