During a review of samples submitted to the VirusTotal website, a ransomware dubbed Empire has been discovered. Empire prevents victims from accessing their files by encrypting them. Also, it appends the ".emp" extension to filenames. For example, it renames "1.jpg" to "1.jpg.emp", "2.png" to "2.p
Upon close inspection, the outcome of our examination is that Isoindazole.app is a dubious application that functions as adware. Once installed, Isoindazole.app displays unwanted and annoying advertisements. It is important to note that Isoindazole.app is part of the Pirrit family. Appli
Albabat is malware classified as ransomware. It encrypts files, adds the ".abbt" extension to filenames, changes the desktop wallpaper, and creates the "README.html" file (a ransom note). An example of how files encrypted by Albabat are renamed: "1.jpg" is changed to "1.jpg.abbt", "2.png" is chang
Upon inspection, the outcome of our examination is that update-mac[.]com is an untrustworthy page designed to show misleading content to get permission to send notifications. Also, update-mac[.]com can redirect visitors to similar pages. Thus, it is advisable to avoid visiting update-mac[.]com and
Following an evaluation, we have determined that Dragon Search operates as a browser hijacker. More specifically, it modifies the settings of a web browser to promote a fake search engine (dragonboss.solutions). Consequently, we advise users against adding this application to their browsers.
After an examination, we have concluded that Dragon Honey functions as a browser hijacker. Specifically, Dragon Honey alters the settings in a web browser to endorse a counterfeit search engine (dragonboss.solutions). Therefore, it is recommended that users refrain from adding this application to
It has been revealed that this is a scam related to cryptocurrency, strategically devised to deceive unsuspecting users into engaging in a counterfeit giveaway. The primary objective pursued by the perpetrators orchestrating this Earndrop scam is the illicit acquisition of cryptocurrency through f
Upon examination, it has been determined that StenonychosaurusInequalis is a questionable browser extension capable of accessing diverse information, controlling themes and other extensions, and enabling the "Managed by your organization" feature in Chrome and Edge browsers. Consequently, users ar
Following a thorough investigation, it has come to light that this is a cryptocurrency scam designed to exploit unsuspecting individuals by stealing their digital assets. The scam is propagated through X (Twitter) and a deceptive webpage promoting a fraudulent giveaway. Consequently, users are str
Prime, a malicious software, specializes in pilfering sensitive information from Windows users. This cunning threat exhibits proficiency in extracting a broad spectrum of data, including but not limited to browser data, crypto details, Discord data, system information, and various other data. This