While browsing new file submissions to the VirusTotal site, our researchers found the ValueInterface application. Our examination revealed that this app is adware belonging to the AdLoad malware family. Adware stands for advertising-supported software. It usually works by placing third-p
Webcetsblog[.]com is the address of a rogue site discovered by our research team during a routine investigation of questionable websites. The purpose of this page is to deceive users into permitting its browser notification delivery. Additionally, webcetsblog[.]com can redirect visitors to other (
Our research team discovered ProductivePlatform adware while browsing file submissions to the VirusTotal platform. This application is part of the AdLoad malware family. Advertising-supported software is designed to run intrusive ad campaigns. Adware stands for advertising-supported soft
StormCry (Stormous) is a ransomware-type program discovered by our research team during a routine investigation of new submissions to VirusTotal. Ransomware is a malware class designed to encrypt data and demand ransoms for its decryption. We executed a sample of StormCry (Stormous) ransomware on
ValueIndexer is a rogue application discovered by our researchers during a routine inspection of new file submissions to the VirusTotal website. We have determined that this app is adware (advertising-supported software) belonging to the AdLoad malware family. ValueIndexer is designed to feed u
DragonForce is a ransomware variant we discovered while examining malware samples submitted to VirusTotal. DragonForce encrypts files, renames every encrypted file, and provides a ransom note ("readme.txt"). It renames files by replacing their filenames with a random string and appending the ".dra
Our research team discovered ToolboxKey while investigating new submissions to the VirusTotal platform. Upon inspection, we learned that this app is adware. ToolboxKey is part of the AdLoad malware family. Advertising-supported software is intended to generate revenue for its developers/publishe
While inspecting dubious websites, our research team discovered the fastinlinedevice.co[.]in rogue page. Its purpose is to deceive users into receiving browser notification spam. The webpage can also generate redirects to different (likely unreliable/hazardous) sites. Most visitors access fastinl
During our examination of theasitive[.]com, we discovered that it displays misleading content to trick visitors into allowing it to show notifications. It is uncommon for websites like theasitive[.]com to be visited intentionally. Users who encounter such sites should close them. Theasitiv
After inspecting the "Hubsync-dev" website, we determined that it is fake. We found this scam promoted on hubsync-dev.pages[.]dev, but it could be hosted on other domains as well. This scheme is disguised as a platform for syncing cryptowallets; instead, it seeks to trick users into disclosing the