While investigating new file submissions to the VirusTotal site, our research team discovered the Frivinho ransomware. This malicious program operates by encrypting data and demanding payment for its decryption. On our test machine, this ransomware encrypted files and appended their filenames wit
Upon inspecting this webpage and the associated post on X (Twitter) promoting it, it became evident that it constitutes a fraudulent giveaway, designed as a scam to pilfer cryptocurrency from unsuspecting individuals. Scammers commonly use enticing prizes or giveaways to attract victims into falli
Recently, cracked apps on pirating websites that carried a Trojan proxy were discovered. The bad actors took pre-cracked apps, repackaged them as PKG files, and hid a Trojan proxy along with a script to infect systems after installation. The application named Activator is also involved in the ma
After inspecting the "ZetaChain Airdrop", we determined that it is fake. This cryptocurrency airdrop is supposedly run on the ZetaChain platform. While the scam webpage appears practically identical to the original website, it is fraudulent and operates as a crypto drainer once a user connects the
After examining the application, it was determined that LaserGradualActivity functions as adware, displaying unwanted advertisements to users. In addition to ad display, LaserGradualActivity may collect various user data. It is advisable to refrain from installing LaserGradualActivity and to rem
Upon inspection of Araucarian.app, it was observed that it functions as adware. It can present intrusive advertisements and is associated with the Pirrit family. Additionally, Araucarian.app may possess the ability to access and collect diverse information. It is advisable not to trust Araucaria
After examining the email, we determined that this is a lottery scam designed to deceive recipients into thinking they won a significant amount of money. This specific scam disguises itself as a notification from VISA AWARDS. Generally, scams of this nature are utilized with the intention of illic
Our researchers found the PositiveFocus app during a routine review of new file submissions to the VirusTotal website. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. PositiveFocus is designed to generate revenue for its developers
Radiyu is the name of a ransomware-type program. Following successful infiltration, this malware encrypts data and demands payment for its decryption. On our testing system, Radiyu encrypted files and added a ".Radiyu" extension to their titles. For example, a filename such as "1.jpg" appeared as
After investigating this "Buy Apple Products With Bitcoins" site, we determined that it is fake. This scam aims to trick users into exposing their cryptocurrency wallets by offering the possibility to purchase Apple products with Bitcoins. The scheme operates as a crypto drainer that empties victi