Our researchers discovered the Napoli malicious program while inspecting file submissions to the VirusTotal site. This malware is based on the Chaos ransomware. On our testing system, Napoli ransomware encrypted files and appended their titles with a ".napoli" extension. To elaborate, a file init
After evaluating UniversalAssist, we determined that it exhibits adware-like behavior. When active, UniversalAssist displays intrusive advertisements to users and may also have the capability to collect data from devices. As a result, users are urged to exercise caution and should consider unins
Following an assessment of IntegerSky, it has been determined that this application demonstrates characteristics of adware. While in operation, IntegerSky presents intrusive advertisements to users. Additionally, this application may be able to gather information from devices. Therefore, users a
In the course of our inspection of malware samples on VirusTotal, we discovered ELITTE87, a ransomware variant belonging to the Phobos family. ELITTE87 encrypts files, modifies filenames, and provides two ransom notes (displays a pop-up window and creates the "info.txt" file). ELITTE87 appends th
Enasnews.com is a rogue webpage discovered by our researchers during a routine investigation of untrustworthy sites. After inspecting this page, we determined that it promotes browser notification spam and redirects users to other (likely dubious/malicious) websites. Visitors to enasnews[.]com an
While inspecting new submissions to the VirusTotal website, our researchers found the OptimalAnalyzer application. Upon investigation, we determined that it is adware from the AdLoad malware group. OptimalAnalyzer is designed to generate revenue for its developers through advertising. Ad
Our research team found the allvissolutions[.]com rogue site while inspecting suspect webpages. It endorses browser notification spam and redirects visitors to other (likely unreliable/hazardous) websites. Most users access pages like allvissolutions[.]com via redirects caused by sites utilizing r
Our researchers discovered ExplorerRecord while investigating submissions to the VirusTotal platform. This application is adware from the AdLoad malware family. ExplorerRecord runs intrusive advertisement campaigns and may have other harmful capabilities. Adware stands for advertising-su
ExtendedModule is a rogue application we discovered while reviewing new file submissions to the VirusTotal site. After checking out this software, we determined that it is adware belonging to the AdLoad malware family. ExtendedModule is designed to feed users with unwanted and potentially malici
While browsing new submissions to VirusTotal, our researchers discovered the MatrixObsession app. Upon inspection, we determined that it is advertising-supported software (adware) from the AdLoad malware family. MatrixObsession operates by running intrusive ad campaigns, and it may possess other