Our researchers discovered Appendix.app while reviewing new file submissions to the VirusTotal platform. After analyzing this application, we learned that it is adware belonging to the Pirrit malware family. Appendix.app operates by running intrusive advertisement campaigns. Adware stand
It has been identified that Carboxyl.app is an advertising-supported application that belongs to the Pirrit family. This app bombards users with intrusive advertisements. Interacting with these ads can lead to unreliable pages. Also, Carboxyl.app may be capable of collecting various information.
After an examination, it has been observed that geikal.co[.]in employs a clickbait technique to entice visitors into consenting to receive notifications. Alongside presenting deceptive content, websites such as geikal.co[.]in are frequently crafted to redirect users to similar pages. Geika
After investigating this "OPTIMISM Airdrop", we determined that it is fake. This scam claims to be an airdrop for the Optimism (OP) cryptocurrency. Instead, this bogus giveaway operates as a crypto drainer – wallets connected to it are emptied of stored funds. The "OPTIMISM Airdrop" webpag
While investigating new malware submissions to the VirusTotal website, our research team discovered the PIRAT HACKER GROUP malicious program. It is based on the Chaos ransomware. On our test machine, PIRAT HACKER GROUP encrypted files for ransom purposes. Names of the affected files were appended
Upon inspection of this "Oversea Credit Commission" email, we determined that it is spam. It states that the recipient needs to provide their personal information to have a "diplomatic consignment", which contains millions, sent to them. This phishing mail aims to obtain sensitive data and might a
Upon inspection of this "Skyborne Genesis $SKY Distribution" site, we determined that it is a scam. This fake website closely mimics the graphics and URL of the genuine Skyborne Genesis site (note other domains are not unlikely). This scheme operates as a crypto drainer – resulting in the theft of
DelphiniumElatum is an untrustworthy application identified during the analysis of a malicious installer obtained from an unreliable website. This application has the capability to activate the "Managed by your organization" feature in Chrome and Edge browsers, read diverse data, and oversee exten
CoV is ransomware belonging to the Xorist family. Cov was discovered during an analysis of samples uploaded to VirusTotal. Once a computer is infected, Cov encrypts files and appends the ".CoV" extension to filenames. Also, it changes the desktop wallpaper, presents an error message, and generates
AeR is a malicious program belonging to the Dharma ransomware family. It encrypts files and demands ransoms for their decryption. Our researchers discovered AeR ransomware during a routine investigation of new submissions to the VirusTotal site. On our test system, AeR encrypted files and altered