Upon inspection of the "INCOMING FAX" email, we learned that it is spam. The bogus letter is presented as a notification regarding faxed documents. This spam mail aims to obtain recipients' email account log-in credentials (passwords) through a phishing website. The spam email with the sub
Duralock is a ransomware-type program discovered by our researchers during a routine inspection of new submissions to the VirusTotal platform. This malicious program is part of the MedusaLocker ransomware family. On our test machine, Duralock encrypted files and added a ".duralock05" extension to
While investigating file submissions to the VirusTotal site, our research team found the LogicalTool app. After analyzing this piece of software, we determined that it is adware. LogicalTool belongs to the AdLoad malware family. Advertising-supported software feeds users with undesirable and pot
Upon inspecting the ValidNatural app, it became clear that it showcases intrusive advertisements that could direct users to unreliable websites, classifying it as adware. It is worth noting that adware is also notorious for collecting user data. Users should not install such software on computer
Our researchers discovered the DefaultConfig application while inspecting new file submissions to the VirusTotal platform. Upon examination, we determined that this software is adware from the AdLoad malware family. DefaultConfig runs intrusive advert campaigns and may have other harmful abiliti
Upon examining the page, we found indications of deception. The site falsely claims the availability of the Creo Launchpad Beta, enticing users with promises of portfolio management, earning $CREO rewards, and participating in alpha testing. It is an attempt to lure unsuspecting individuals into a
Paraboobs[.]xyz is the address of a rogue page discovered by our researchers during a routine investigation of dubious websites. After inspecting this webpage, we learned that it promotes browser notification spam and redirects visitors to different (likely unreliable/dangerous) sites. Users prim
Upon investigation of qjrhacxxk[.]xyz, it became apparent that its objective is to deceive visitors into consenting to receive its notifications. The website employs a clickbait strategy, displaying misleading content to entice users. Furthermore, qjrhacxxk[.]xyz may redirect users to websites pos
While reviewing new submissions to VirusTotal, our researchers discovered the Genesis ransomware. This program is part of the MedusaLocker ransomware family. Malware within this classification encrypts files and demands payment for their decryption. On our test machine, Genesis (MedusaLocker) ran
Upon examination of the Repiningly.app application, it was discovered to be affiliated with the Pirrit family and designed specifically to exhibit intrusive advertisements. Moreover, this application may be able to access and collect various forms of data. Applications like Repiningly.app are ca