Our researchers discovered the FORCE ransomware-type program during a routine review of new submissions to VirusTotal. It is part of the Phobos ransomware family. On our test system, FORCE encrypted files and demanded payment for the decryption. The filenames of locked files were appended with a
Upon analysis of malware samples on the VirusTotal platform, Vook has been identified as a variant within the Djvu ransomware family. Vook encrypts files and modifies their filenames, adding the ".vook" extension. For example, it changes "1.jpg" to "1.jpg.vook", "2.png" to "2.png.vook", and so on.
Upon analyzing the malware samples available on the VirusTotal platform, Looy has been identified as a variant within the Djvu ransomware family. Looy functions by encrypting files and modifying their filenames, appending the ".looy" extension. For instance, it alters "1.jpg" to "1.jpg.looy", "2.p
Upon evaluation, it was determined that the Pure MathCalc Hub application functions as a browser hijacker, compelling users to utilize a counterfeit search engine. This software achieves browser hijacking by altering browser settings. It is advisable to promptly remove browser extensions like Pure
Our research team discovered the VirtualDock app while reviewing new file submissions to the VirusTotal platform. This application belongs to the AdLoad malware family. It operates by running intrusive advertisement campaigns, and due to this behavior – VirtualDock is classed as adware.
Our researchers discovered bundsmoney[.]com while browsing dubious websites. This rogue page promotes spam browser notifications and redirects users to different (likely questionable/malicious) sites. Bundsmoney[.]com and similar webpages are accessed predominantly via redirects generated by webs
Our researchers found FunctionLog while checking out new submissions to the VirusTotal site. It is advertising-supported software (adware) from the AdLoad malware family. FunctionLog is designed to deliver intrusive advertisement campaigns. Adware generates revenue for its developers thr
CleanHub Tabs is a browser extension that we discovered while browsing suspicious websites. This software is endorsed as a tool that allows users to customize their browser backgrounds. Upon examination, we learned that CleanHub Tabs hijacks browsers. It makes changes to browser settings in order
Demseemu[.]com is the address of a rogue webpage discovered by our researchers during a routine inspection of suspicious sites. This page endorses browser notification spam and redirects visitors to different (likely untrustworthy/hazardous) websites. Most users enter webpages like demseemu[.]com
Our research team discovered the BinaryInitiator adware while reviewing new file submissions to the VirusTotal site. This application is part of the AdLoad malware family. Advertising-supported software (adware) is designed to run intrusive advertisement campaigns. Adware typically opera