The ransomware variant dubbed Gyza, which has been discovered during an examination of malware samples on VirusTotal, is linked to the Djvu family. Gyza encrypts files, appends its extension, and delivers a ransom note ("_readme.txt"). Notably, it modifies filenames by adding the ".gyza" extensio
Our researchers discovered the EscapeUpdate app during a routine investigation of new file submissions to the VirusTotal site. After analyzing this piece of software, we learned that it is adware belonging to the AdLoad malware family. EscapeUpdate operates by feeding users with unwanted and dec
Smart Seeker is a rogue browser extension. It makes changes to browser settings in order to promote (through redirects) the smartseeker.info fake search engine. Due to this behavior, Smart Seeker is categorized as a browser hijacker. On our test machine, Smart Seeker reassigned the browser
While inspecting untrustworthy sites, our researchers discovered a webpage promoting a dubious installation setup. This installer contained the CanisLupus browser extension. Upon investigation, we determined that it is capable of managing browsers, which allows for varied manipulation of the soft
Having scrutinized the email associated with this scam, we have concluded that the scammers orchestrating it intend to entice unsuspecting individuals into revealing sensitive information. Their primary objective is to pilfer cryptocurrency wallets. Therefore, it is imperative to disregard both th
Our research team found the BootEfficient app while reviewing submissions to the VirusTotal platform. After examining BootEfficient, we determined that it is advertising-supported software (adware). This application is part of the AdLoad malware family. It runs intrusive advertisement campaigns
Our analysis of malware samples submitted to VirusTotal has revealed the existence of Gyew, a variant of ransomware. Moreover, it has been determined that Gyew is associated with the Djvu malware family. This specific variant of ransomware operates by encrypting files, appending the ".gyew" extens
Gycc, a ransomware strain, has been identified during the analysis of malware samples submitted to VirusTotal. Additionally, it has been established that Gycc is linked to the Djvu malware family. This particular ransomware variant functions by encrypting files, adding the ".gycc" extension to fil
"Requirements For Your Inbox Delivery" is a spam email, upon the inspection of which – we determined that it promotes a phishing scam. This bogus letter informs the recipient that unless the appropriate actions are taken, they will experience issues with their email service. This spam mail aims to
In our assessment of the PersonalProsper application, we found that it functions as adware, displaying dubious advertisements. Furthermore, there is a potential threat of PersonalProsper accessing and collecting various user information. Thus, PersonalProsper should be removed from affected comp