Prince is a ransomware-type virus. This malicious program is written in the Go programming language. It encrypts victims' files to demand payment for the decryption. After we executed a sample of Prince on our test machine, it encrypted files and appended their filenames with a ".ran" extension.
We have examined ondshub[.]com and determined that it is a deceptive website designed to deceive users into granting it permission to display notifications. Usually, users unintentionally access sites like ondshub[.]com. If this (or a similar) page has been allowed to show notifications, this perm
Worldtracker is the name of a malicious program that extracts and exfiltrates sensitive information from devices. Among this stealer's capabilities are cryptocurrency wallet theft and victims' file download/exfiltration. Worldtracker is a stealer – a type of malware designed to obtain vuln
While testing ProcessInput, our team discovered that it has traits of adware: once installed, ProcessInput displays annoying advertisements. Additionally, this app might be designed to collect browsing-related and other data. Users should avoid installing ProcessInput and similar applications.
Styx is a type of malware specifically designed to steal sensitive information from infected devices. It is sold for $75 per month, $230 per three months, and $350 for a lifetime license). Having a computer infected with this malware may lead to issues such as monetary loss, identity theft, and mo
MaxCat is a ransomware variant belonging to the Chaos family. Our discovery of MaxCat occurred while inspecting malware samples submitted to VirusTotal. During our examination of the MaxCat ransomware, we found that it encrypts and renames files (by appending four random characters), changes the d
ElementFormula is a rogue application that our researchers determined to be adware. This app is part of the AdLoad malware family. ElementFormula is designed to run intrusive advertisement campaigns. The purpose of advertising-supported software is to generate revenue for its developers.
Upon inspection, our research team determined that the ConsoleActivity application is adware from the AdLoad malware family. Advertising-supported software (adware) is designed to generate revenue for its developers/publishers via advertising. Generally, it feeds users with undesirable and possi
While examining FilterValue, we found that its purpose is to generate advertisements. For this reason, we classified FilterValue as adware. It is common for software of this type to be distributed using questionable (often deceptive) methods. Thus, users often install such apps without knowing t
Our analysis of ValidQueue has shown that it is an advertising-supported application. Upon installation, it shows annoying advertisements that can lead users to potentially malicious sites. Also, ValidQueue might be designed to harvest certain data. Users should not trust such apps. Vali