Eqza is ransomware that has been discovered during an analysis of malware samples submitted to VirusTotal. Also, it has been found that Eqza belongs to the Djvu family, encrypts files, adds the ".eqza" extension to filenames, and drops a ransom note named "_readme.txt". An illustration of how Eqza
Our research team discovered the totaltopwords[.]com rogue page during a routine inspection of suspect websites. Upon review, we determined that this webpage promotes browser notification spam and may redirect users to other (likely unreliable/dangerous) sites. Most visitors enter totaltopwords[.
Our research team found LaunchImprovment while reviewing new file submissions to the VirusTotal platform. This application runs intrusive advertisement campaigns, and due to this behavior – it is classified as adware. LaunchImprovment is part of the AdLoad malware family. Adware stands f
MetricMaster is a rogue browser extension promising a widget capable of providing metric system unit conversions. Our research team discovered this piece of software during a routine investigation of dubious sites. After examining MetricMaster, we determined that it is a browser hijacker. This ex
We discovered the VideoEthernetInteger application during a routine inspection of new file submissions to the VirusTotal site. Our analysis revealed that this app is adware belonging to the AdLoad malware family. VideoEthernetInteger delivers intrusive ad campaigns and may have additional harmfu
Our examination of the SyncedAdmin application revealed that the purpose of this app is to bombard users with intrusive advertisements. Thus, SyncedAdmin has been classified as adware. In addition to displaying ads, SyncedAdmin may gather various data and perform other actions. Thus, users shoul
ThemeRanked is a rogue app that we found while investigating new file submissions to the VirusTotal platform. After analyzing this application, we determined that it is advertising-supported software (adware). ThemeRanked is part of the AdLoad malware family. Adware is designed to run in
Ansiety is an information stealer that possesses the capability to extract sensitive information not only from browsers but also from specific applications and cryptocurrency wallets. This multifaceted threat underscores the breadth of its reach, posing a comprehensive risk to the security and pri
While inspecting new submissions to the VirusTotal platform, our researchers discovered the Shanova malicious program, which is based on the Chaos ransomware. Malware within this classification operates by encrypting data and demanding payment for its decryption. On our test machine, Shanova rans
Our investigation into the MacacaFascicularis application has revealed that it possesses the capability to access a wide range of data, manage apps, extensions, and themes within the Chrome browser, and activate the "Managed by your organization" feature. It is important to emphasize that the dist