While reviewing new submissions to the VirusTotal website, our researchers discovered Fearful.app. Upon inspection, we determined that this application is part of the Pirrit adware family. Fearful.app operates as advertising-supported software (adware). This piece of software runs intrusive adve
After examining the page, we have determined that it is a fraudulent scheme posing as a platform for finding active airdrops. The website pretends to be a legitimate Metamask (cryptocurrency wallet software) page, providing instructions for users to take specific actions to assess their eligibilit
While analyzing malware samples using VirusTotal, we detected a ransomware variant known as Avanzi, which is associated with the Dharma family. Upon successfully infiltrating a computer, Avanzi encrypts files, alters filenames, presents a ransom note, and generates an additional note in the "info.
While scrutinizing the application named ApplicationKey, we found that it operates as adware, delivering intrusive advertisements to users. Additionally, ApplicationKey may have the capability to collect various information. It is important to note that apps like ApplicationKey are frequently di
During our evaluation, we discovered that Clintestwood4playfilms is a questionable application distributed through websites that provide illegal software cracks. The intended use of Clintestwood4playfilms is uncertain as its functionality remains unclear. Nevertheless, it comes bundled with variou
After reviewing the "Mailbox Password Security Update" email, we determined that it is spam. The letter states that there are security issues with the recipient's mailbox. The purpose of this claim is to lure them into entering their log-in credentials into a phishing website. This spam em
This "Jupiter Airdrop" that we investigated is a scam. This airdrop claims to distribute the Jupiter (JUP) cryptocurrency. However, after a victim connects their digital wallet to this platform, it begins working as a crypto drainer and empties the funds. This scheme supposedly distributes
EuphractusSexcinctus is the name of a malicious browser extension. Our researchers discovered this piece of software during a routine investigation of untrustworthy websites. After analyzing the extension, we determined that it is capable of modifying browsers and collecting sensitive user informa
After reviewing the "SharePoint Settlement Agreement" email, we determined that it is spam. The letter is presented as a notification regarding settlement agreement documents sent via SharePoint. It must be stressed that all the information provided by this email is false, and this mail is not as
This "SatoshiVM Token Airdrop" is fake. The airdrop claims to distribute Satoshi (SATS) – the smallest unit of Bitcoin (BTC) cryptocurrency. The user has to connect their cryptowallet to the giveaway to check its eligibility. However, after a wallet is linked – the scam starts operating as a crypt