Our researchers discovered the PowerRemote app during a routine inspection of new submissions to the VirusTotal site. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. PowerRemote is designed to run intrusive advertisement campaigns.
Upon inspection, we determined that the "Netflix - Update Your Payment Details" email is fake. This spam letter states that there are issues regarding the billing information on the recipient's Netflix account. It must be emphasized that this mail is not associated with the actual Netflix streami
While reviewing untrustworthy websites, our researchers discovered the "Windows Defender Firewall Alert" technical support scam. This scheme mimics Windows alerts and claims the user's device is infected. The aim is to lure the victim into calling a fake helpline, thus roping them into an elaborat
Upon scrutinizing the application, it became evident that ResourceActivity functions as adware, displaying intrusive advertisements to users when active. Beyond the nuisance of ads, ResourceActivity may also gather diverse data. Therefore, users impacted by this should uninstall ResourceActivity
In the course of our inspection of malware samples on VirusTotal, we came across a ransomware variant named Xrp belonging to the GlobeImposter family. The purpose of Xrp is to encrypt files. Also, it appends an email address and the ".xrp" extension to filenames and provides a ransom note ("Read_F
VirtualDocument is a rogue application. Upon inspection, we determined that this piece of software operates as adware. VirtualDocument is part of the AdLoad malware family. This app is designed to generate revenue for its developers by feeding users with undesirable and potentially harmful adver
During an examination of the application, we discovered that LogiOptions is a suspicious program without a clear purpose. Moreover, its distribution involves other shady components. Thus, users should remove LogiOptions and all associated files and apps from affected computers as soon as possible.
While investigating new malware submissions to VirusTotal, our researchers found the LockShit BLACKED ransomware, which is based on Chaos. Malicious programs within this category are designed to encrypt files and demand payment for their decryption. On our test machine, LockShit BLACKED encrypted
Following a recent examination of malware samples submitted to VirusTotal, it has been established that Cdcc is associated with the Djvu ransomware family. Its main goal is to encrypt data, and it produces a ransom note ("_readme.txt") while adding the ".cdcc" extension to file names (for instance
While analyzing malware samples uploaded to VirusTotal, it has been determined that Cdxx belongs to the Djvu ransomware family. Its primary objective is to encrypt data. Also, it generates a ransom note ("_readme.txt") and appends the ".cdxx" extension to filenames (e.g., renames "1.jpg" to "1.jpg