Our researchers found the PracticalDisplay application while reviewing new submissions to the VirusTotal website. After investigating this piece of software, we determined that it is adware. PracticalDisplay is part of the AdLoad malware family. This app operates by delivering intrusive advert c
Our researchers found iwheenaiga[.]com while browsing untrustworthy websites. After inspecting this rogue webpage, we determined that it promotes browser notification spam and redirects users to other (likely dubious/malicious) sites. The majority of visitors to iwheenaiga[.]com and pages akin to
This fake crypto exchange platform imitates the legitimate Hyperliquid trading platform. The scam website we investigated perfectly mimicked Hyperliquid's design. However, the fraudulent webpage lacked functionality besides the "connect wallet" option. When users "connect" their digital wallets to
Our researchers discovered the Rincrypt ransomware while examining new submissions to the VirusTotal website. After we executed a sample of Rincrypt on our testing system, it encrypted files and appended their filenames with a ".rincrypt" extension. For example, a file originally titled "1.jpg" a
During our inspection, we found that bestrecgetpreview[.]com is a deceptive website designed to display deceptive content to lure visitors into taking certain actions. Also, bestrecgetpreview[.]com may redirect users to other unreliable sites. Thus, bestrecgetpreview[.]com should be avoided.
This "Mode Sunrise Airdrop" is fake. The giveaway supposedly distributes the Mode cryptocurrency. However, when a user attempts to participate in this airdrop, they inadvertently expose their digital wallet to a crypto drainer that can empty it of stored assets. Several domains have been o
Upon inspection, we determined that the "WeTransfer - You Have Received Files" email is spam. This phishing letter targets email account log-in credentials by claiming that the recipient was sent a file via a legitimate file transfer service. It must be emphasized that this scam mail is not assoc
While browsing submissions to the VirusTotal platform, our researchers discovered a ransomware named 777. This malicious program is part of the GlobeImposter ransomware family. We acquired a sample of 777 (GlobeImposter) ransomware from VirusTotal and executed it on our test machine. The malware
Our analysis of carenotifsolution[.]xyz determined that it is an unreliable website promoting a legitimate software product. Also, carenotifsolution[.]xyz asks for permission to send notifications that are misleading. Thus, users should avoid visiting carenotifsolution[.]xyz or allow it to show no
After carefully examining the email, we have determined that it is a fraudulent message crafted to entice unsuspecting recipients into accessing a deceptive website. These scammers use the website to pilfer personal information. Such deceptive emails are commonly referred to as phishing emails.