The Weather Mom browser extension promises easy access to weather forecasts. After inspecting this piece of software, we determined that it is a browser hijacker. The Weather Mom modifies browser settings to promote theweathermom.com and find.searchfuel.net fake search engines. Browser-hij
While inspecting new file submissions to the VirusTotal site, we discovered the SkillsRefer application. After analyzing this piece of software, we determined that it is adware. SkillsRefer belongs to the AdLoad malware family. This app is designed to run intrusive advertisement campaigns.
Our inspection of the "HR Department Shared A File With You" email revealed that it is spam. This fake mail aims to trick recipients into visiting a phishing website that mimics their email account sign-in page by claiming that HR (Human Resources) has shared a file. This spam email states
Our researchers found the SectionOperation adware while investigating new file submissions to VirusTotal. This advertising-supported software is part of the AdLoad malware family. SectionOperation feeds users with unwanted and potentially malicious advertisements. Adware can display thir
SoftwareSkillMatrix is a rogue application that we discovered while investigating new submissions to the VirusTotal website. Our analysis revealed that it is advertising-supported software (adware). SoftwareSkillMatrix is part of the AdLoad malware family. Adware is designed to run intru
An examination of Converter Tab showed that this app operates as a browser hijacker. It takes control over a web browser by changing its settings. The purpose of Converter Tab is to promote convertertab.com, which is a fake search engine. It is advisable for users to exercise caution and avoid app
Forest New Tab is an extension that promises to display forest-themed browser wallpapers. After inspecting this piece of software, we determined that it is a browser hijacker. Forest New Tab makes changes to browser settings in order to endorse (via redirects) the ysrc2u.com illegitimate search en
Enmity is ransomware designed to encrypt data, modify the filenames of all encrypted files, and leave a ransom note (a file named "Enmity-Unlock-Guide.txt"). Enmity replaces filenames with a random string, email address, victim's ID, and a random extension. For instance, it renames "1.jpg" to "YG
Beautiful Beach Tab is a rogue browser extension. It modifies browser settings in order to promote (via redirects) the beautifulbeachtab.com fake search engine. Due to this behavior, Beautiful Beach Tab is classified as browser-hijacking software. On our test machine, Beautiful Beach Tab a
Our researchers found the Hyj ransomware while reviewing new submissions to the VirusTotal website. This malicious program belongs to the Xorist ransomware family. Hyj encrypts data and demands payment for its decryption. After we launched a sample of this ransomware on our test machine, it encry