Step-by-Step Malware Removal Instructions

Cumbha.app Adware (Mac)
Mac Virus

Cumbha.app Adware (Mac)

Our researchers found Cumbha.app while reviewing new file submissions to the VirusTotal website. After analyzing this application, we learned that it is adware from the Pirrit malware family. Cumbha.app is designed to feed users with undesirable and potentially malicious advertisements.

Pings Ransomware
Ransomware

Pings Ransomware

Pings is malware we discovered during an analysis of malware samples submitted to VirusTotal. It was found that Pings is ransomware designed to encrypt files, provide a ransom note ("FILE RECOVERY.txt"), and rename files (append the ".pings" extension to filenames). Pings is used to extort money f

Mango Ransomware
Ransomware

Mango Ransomware

Mango ransomware is a malicious program discovered by our researchers during a routine inspection of new submissions to the VirusTotal platform. This malware is part of the Phobos ransomware family. Mango operates by encrypting files to demand payment for its decryption. After we launched a sampl

Evil Ant Ransomware
Ransomware

Evil Ant Ransomware

Evil Ant is malware classified as ransomware. The purpose of Evil Ant is to prevent victims from accessing their files by encrypting them. Also, Evil Ant changes the desktop wallpaper and displays a ransom note (a pop-up window) containing contact and payment information. Screenshot of files e

ElementDisplay Adware (Mac)
Mac Virus

ElementDisplay Adware (Mac)

In the process of our thorough assessment, it has surfaced that ElementDisplay displays intrusive advertisements. Apps designed to bombard users with ads fall into the category of adware. Usually, apps like ElementDisplay are promoted and distributed using questionable methods to trick users int

ChrysochlorisAsiatica Malicious Extension
Adware

ChrysochlorisAsiatica Malicious Extension

After a thorough examination, it has been determined that ChrysochlorisAsiatica is an untrustworthy browser extension distributed through a malicious installer. Upon adding this extension to a browser, it activates the "Managed by your organization" feature, particularly in Chrome or Edge. Additio

Assistance To Move Funds Email Scam
Phishing/Scam

Assistance To Move Funds Email Scam

Upon thorough examination, it has been determined that this email exemplifies a classic investment scam, often recognized as an advance-fee scam. The intention is to deceive recipients into sending money to fraudsters. Additionally, it is typical for scammers associated with these emails to solici

Cdtt Ransomware
Ransomware

Cdtt Ransomware

After a recent analysis of malware samples uploaded to VirusTotal, it has been determined that Cdtt belongs to the Djvu ransomware family. Its primary objective is to encrypt data, and it generates a ransom note ("_readme.txt") while appending the ".cdtt" extension to filenames (e.g., it renames "

Cdpo Ransomware
Ransomware

Cdpo Ransomware

During our comprehensive analysis of malware samples submitted to the VirusTotal page, it has been identified that Cdpo is a ransomware variant associated with the Djvu family. Cdpo encrypts files and adds its extension (".cdpo") to the filenames. For example, it renames "1.jpg" to "1.jpg.cdpo", "

CallorhinusUrsinus Malicious Extension
Adware

CallorhinusUrsinus Malicious Extension

Our research team discovered a deceptive website pushing a suspicious installation setup during a routine investigation of untrustworthy sites. Therein, we found the CallorhinusUrsinus malicious extension. This piece of software targets Google Chrome and Microsoft Edge browsers. The extension has