Upon inspection of this "Skyborne Genesis $SKY Distribution" site, we determined that it is a scam. This fake website closely mimics the graphics and URL of the genuine Skyborne Genesis site (note other domains are not unlikely). This scheme operates as a crypto drainer – resulting in the theft of
DelphiniumElatum is an untrustworthy application identified during the analysis of a malicious installer obtained from an unreliable website. This application has the capability to activate the "Managed by your organization" feature in Chrome and Edge browsers, read diverse data, and oversee exten
CoV is ransomware belonging to the Xorist family. Cov was discovered during an analysis of samples uploaded to VirusTotal. Once a computer is infected, Cov encrypts files and appends the ".CoV" extension to filenames. Also, it changes the desktop wallpaper, presents an error message, and generates
AeR is a malicious program belonging to the Dharma ransomware family. It encrypts files and demands ransoms for their decryption. Our researchers discovered AeR ransomware during a routine investigation of new submissions to the VirusTotal site. On our test system, AeR encrypted files and altered
Upon reviewing the email, it is evident that it is a phishing attempt disguising itself as a notification from American Express regarding suspicious account activities. The scammers orchestrating this phishing scheme intend to deceive recipients into opening the provided link and divulging persona
CookiesHelper is ransomware that we discovered during inspection of malware samples submitted to VirusTotal. CookiesHelper is created to encrypt files and provide a ransom note ("FILE RECOVERY.txt") containing instructions on how to contact cybercriminals and other details. Also, CookiesHelper add
Upon examination, it has been determined that CommonValue exhibits characteristics typical of adware. When in operation, it presents users with irritating advertisements. Furthermore, this application may be crafted to collect diverse information. It is noteworthy to highlight that a majority of
Upon reviewing the "Payroll Sheet" email, we determined that it is spam. The letter claims to include access to a payroll sheet, which the recipient is requested to review and approve. However, by attempting to do so – the user is redirected to a phishing website that targets email account log-in
The "PonDX" scam imitates the legitimate platform of the same name and operates as a cryptocurrency drainer. After a victim connects their wallet through the fake website, the funds stored therein are drained. The fake "PonDX" site that we investigated is an almost perfect copy of the legi
While investigating suspicious sites, our research team discovered the "Malicious Site Has Downloaded Infected Files To Your PC" scam. The purpose of this scheme is to trick users into thinking that virulent files have been downloaded onto their devices. In most cases, scams of this kind are utili