Through our analysis of malware samples uploaded to VirusTotal, we determined that MIRROR is a ransomware variant belonging to the Dharma family. MIRROR's purpose is to encrypt files. Also, it renames files and provides two ransom notes (displays a pop-up window and creates the "info-MIRROR.txt" f
Through our analysis of the app, we determined that DataControl falls into the category of advertising-supported applications. Its main function involves displaying intrusive advertisements to users. Besides showing annoying ads, DataControl may harvest various data. For these reasons, DataContr
Our research team discovered MethodOnline while checking out new submissions to the VirusTotal platform. Upon inspection, we determined that this application is advertising-supported software (adware) belonging to the AdLoad malware family. Adware is designed to generate revenue for its
Upon inspection, we determined that "BitDogs Mint Free" is a scam. It offers users the opportunity to mint BitDogs NFTs (Non-Fungible Tokens) free of charge. However, once a victim connects their digital wallet to the scam – it starts operating as a cryptocurrency drainer. The page running
Our investigation of this "KYC (Know Your Customer) Verification" email revealed that it is spam. This fake message encourages recipients to undergo a KYC (Know Your Customer) verification process in order to secure their cryptocurrency wallets. The spam email with the subject "KYC Verific
After investigating the "Unclaimed Expensive Goods" email, we determined that it is spam. This letter makes an offer for the recipient to participate in a scheme. In this plot, they will be presented as a representative of a deceased Mossack Fonseca investor. Upon success of the plan, the email re
VajraSpy is a remote access trojan (RAT) specifically designed for targeted espionage on Android devices. This malware exhibits a wide range of functionalities, including data theft, call recording, message interception, and even the capture of photos through the device's camera. VajraSpy's deploy
PrivateLoader is a malicious program classed as a loader. Software within this classification is designed to cause chain infection by downloading/installing additional malware or other malicious content onto compromised machines. PrivateLoader is also considered to be a malware family, as it arri
Upon examining the email, we identified it as a phishing attempt designed to deceive recipients into divulging personal information. The email is camouflaged as a message from an email service provider, with scammers employing a fraudulent website to extract personal details. The email cla
While examining PixelMegabyte, we noted that the app exhibits intrusive advertisements, classifying it as adware. Additionally, PixelMegabyte may possess the ability to collect various types of data. Therefore, it is advised to refrain from installing apps like PixelMegabyte and remove already i