Our research team discovered nortos[.]fun during a routine inspection of dubious websites. This rogue page endorses deceptive content and spam browser notifications. It can also redirect users to other (likely untrustworthy/dangerous) sites. Most visitors to nortos[.]fun and webpages akin to it ac
TrustedAnalyser is an adware-type app from the AdLoad malware family. The application operates by running intrusive advertisement campaigns, and it may have other harmful abilities. Our research team discovered TrustedAnalyser during a routine investigation of new file submissions to the VirusTo
Sighful.app is a piece of rogue software discovered by our research team during a routine inspection of new submissions to the VirusTotal platform. After analyzing this application, we determined that it is advertising-supported software (adware). Sighful.app is part of the Pirrit malware family
In the course of our inspection of malware samples on VirusTotal, we came across the finding that ZENEX is ransomware belonging to the Proton family. ZENEX is designed to encrypt files, modify filenames of encrypted files, provide a ransom note ("#Zenex-Help.txt"), and change the desktop wallpaper
Yoursmartsecurityguards[.]club is a rogue webpage discovered by our researchers during a routine inspection of unreliable websites. This page promotes deceptive content and spam browser notifications. It can also redirect users to other (likely dubious/dangerous) sites. Visitors to yoursmartsecur
While inspecting new submissions to the VirusTotal platform, our research team discovered an application called Skat.app. Upon inspection, we determined that it is adware belonging to the Pirrit malware family. Skat.app is designed to generate revenue for its developers by feeding users with und
Upon closer inspection of the PlatformIndex application, we identified that it is an advertising-supported app that bombards users with annoying and intrusive advertisements. Additionally, the app might be designed to gather various information that its developers could misuse for malicious purp
While checking out new file submissions to the VirusTotal website, our research team found the SYSDF ransomware. This program is part of the Dharma ransomware family. SYSDF is designed to encrypt data and demand payment for its decryption. On our testing system, this ransomware encrypted files an
DarkMe is identified as a remote access Trojan (RAT), a type of malware designed to provide cybercriminals with unauthorized access to infected systems. RATs are notorious for their stealthy operations, allowing attackers to monitor user activity, steal sensitive information, and execute malicious
While examining malware samples on VirusTotal, we discovered a member of the Phobos ransomware family dubbed Water. Like most ransomware variants, Water encrypts and renames files and provides a ransom note. Water's ransom notes are provided in "info.hta" and "info.txt" files. While renaming file