Our research team discovered ProductivePlatform adware while browsing file submissions to the VirusTotal platform. This application is part of the AdLoad malware family. Advertising-supported software is designed to run intrusive ad campaigns. Adware stands for advertising-supported soft
StormCry (Stormous) is a ransomware-type program discovered by our research team during a routine investigation of new submissions to VirusTotal. Ransomware is a malware class designed to encrypt data and demand ransoms for its decryption. We executed a sample of StormCry (Stormous) ransomware on
ValueIndexer is a rogue application discovered by our researchers during a routine inspection of new file submissions to the VirusTotal website. We have determined that this app is adware (advertising-supported software) belonging to the AdLoad malware family. ValueIndexer is designed to feed u
DragonForce is a ransomware variant we discovered while examining malware samples submitted to VirusTotal. DragonForce encrypts files, renames every encrypted file, and provides a ransom note ("readme.txt"). It renames files by replacing their filenames with a random string and appending the ".dra
Our research team discovered ToolboxKey while investigating new submissions to the VirusTotal platform. Upon inspection, we learned that this app is adware. ToolboxKey is part of the AdLoad malware family. Advertising-supported software is intended to generate revenue for its developers/publishe
While inspecting dubious websites, our research team discovered the fastinlinedevice.co[.]in rogue page. Its purpose is to deceive users into receiving browser notification spam. The webpage can also generate redirects to different (likely unreliable/hazardous) sites. Most visitors access fastinl
During our examination of theasitive[.]com, we discovered that it displays misleading content to trick visitors into allowing it to show notifications. It is uncommon for websites like theasitive[.]com to be visited intentionally. Users who encounter such sites should close them. Theasitiv
After inspecting the "Hubsync-dev" website, we determined that it is fake. We found this scam promoted on hubsync-dev.pages[.]dev, but it could be hosted on other domains as well. This scheme is disguised as a platform for syncing cryptowallets; instead, it seeks to trick users into disclosing the
Our examination of the ExplorePartition application revealed that it generates intrusive advertisements. For this reason, we classified ExplorePartition as adware. It is also worth noting that users often download and install such apps unintentionally. Overall, it is not recommended to trust Exp
Our inspection of the email has shown that it is a phishing attempt. This email is disguised as a letter regarding a lottery winning. The scammers behind this campaign aim to lure recipients into providing personal details and (or) sending them money. Emails of this kind should be ignored.