Step-by-Step Malware Removal Instructions

EasyStealer Malware
Trojan

EasyStealer Malware

EasyStealer is an information-stealing malware written in the Go programming language. This stealer emerged in July 2023 on a Russian hacker forum; on the 16th, EasyStealer's developers searched for beta testers, and on the 23rd – the first advert was posted. Since then, several variants of EasySt

Exela Stealer
Trojan

Exela Stealer

Exela is the name of a powerful information-stealing malware recognized for its ability to exfiltrate a wide range of sensitive data from infected devices, posing a significant threat to both personal and organizational security. It can steal data from web browsers and other apps, take screenshots

CumulusFractus Malicious Extension
Adware

CumulusFractus Malicious Extension

While analyzing an untrustworthy installer obtained from an unreliable website, we came across the CumulusFractus browser extension. Our investigation revealed troubling attributes linked to this application, such as its capacity to enable the "Managed by your organization" feature in the Chrome b

ReadText Ransomware
Ransomware

ReadText Ransomware

Our research team found the ReadText ransomware while inspecting new submissions to the VirusTotal platform. This malicious program is part of the MedusaLocker ransomware family. ReadText operates like standard ransomware. It encrypted the files on our test machine. Original filenames were append

JPMorgan Chase Online Security Department Email Scam
Phishing/Scam

JPMorgan Chase Online Security Department Email Scam

Upon investigation, it has been determined that the intent of this email is to deceive recipients into sharing their personal information. The scammers behind this email pose as representatives from the JPMorgan Chase online security department, aiming to deceive recipients into providing the requ

Meduza Ransomware
Ransomware

Meduza Ransomware

Meduza is a ransomware variant (belonging to the MedusaLocker family) that has been discovered during analysis of malware samples submitted to the VirusTotal page. The purpose of Meduza is to encrypt files. Also, it appends its extension (".meduza24" or similar) to filenames and creates a ransom n

Microsoft Ending Promotion Award Email Scam
Phishing/Scam

Microsoft Ending Promotion Award Email Scam

After reviewing this email, it has come to our attention that it is a fraudulent message falsely claiming to be from Microsoft. The scammers behind this scam are trying to deceive recipients by claiming they have won a large amount of money. Their objective is to entice recipients to share persona

Mzre Ransomware
Ransomware

Mzre Ransomware

While analyzing malware samples uploaded to VirusTotal, we encountered Mzre, a ransomware variant linked to the Djvu family. Mzre encrypts files, appends the ".mzre" extension to their filenames, and generates a ransom note ("_readme.txt"). An illustration of how Mzre alters filenames involves ch

Go Blocker Adware
Adware

Go Blocker Adware

While scrutinizing the Go Blocker browser extension, we observed its tendency to showcase bothersome advertisements, which categorizes it as adware. Additionally, Go Blocker possesses the capability to access and modify various data. As a result, users are advised not to place trust in this applic

Fetchzilla Adware
Adware

Fetchzilla Adware

Fetchzilla is an adware-type browser extension that our researchers discovered while investigating suspicious websites. It is promoted as a tool that simplifies media (e.g., image) download off the Web. However, this extension runs intrusive advertisements instead. In other words, Fetchzilla feeds