Recently, cracked apps on pirating websites that carried a Trojan proxy were discovered. The bad actors took pre-cracked apps, repackaged them as PKG files, and hid a Trojan proxy along with a script to infect systems after installation. The application named Activator is also involved in the ma
After inspecting the "ZetaChain Airdrop", we determined that it is fake. This cryptocurrency airdrop is supposedly run on the ZetaChain platform. While the scam webpage appears practically identical to the original website, it is fraudulent and operates as a crypto drainer once a user connects the
After examining the application, it was determined that LaserGradualActivity functions as adware, displaying unwanted advertisements to users. In addition to ad display, LaserGradualActivity may collect various user data. It is advisable to refrain from installing LaserGradualActivity and to rem
Upon inspection of Araucarian.app, it was observed that it functions as adware. It can present intrusive advertisements and is associated with the Pirrit family. Additionally, Araucarian.app may possess the ability to access and collect diverse information. It is advisable not to trust Araucaria
After examining the email, we determined that this is a lottery scam designed to deceive recipients into thinking they won a significant amount of money. This specific scam disguises itself as a notification from VISA AWARDS. Generally, scams of this nature are utilized with the intention of illic
Our researchers found the PositiveFocus app during a routine review of new file submissions to the VirusTotal website. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. PositiveFocus is designed to generate revenue for its developers
Radiyu is the name of a ransomware-type program. Following successful infiltration, this malware encrypts data and demands payment for its decryption. On our testing system, Radiyu encrypted files and added a ".Radiyu" extension to their titles. For example, a filename such as "1.jpg" appeared as
After investigating this "Buy Apple Products With Bitcoins" site, we determined that it is fake. This scam aims to trick users into exposing their cryptocurrency wallets by offering the possibility to purchase Apple products with Bitcoins. The scheme operates as a crypto drainer that empties victi
Plik programu 4Trans is the name of a PUA (Potentially Unwanted Application). Software within this classification commonly has harmful functionalities. It is pertinent to mention that the installation setup carrying Plik programu 4Trans that we investigated was bundled with other unwanted and pote
RCRU64 is ransomware designed to encrypt files and change their names (append the victim's ID, email address, and the (".HM8" extension) and provide two ransom notes ("Restore_Your_Files.txt" and "ReadMe.hta") with the same instructions. It is known that there are at least two other variants of RC