Our researchers discovered the CampaignConclusion app while checking out new submissions to the VirusTotal platform. After investigating this piece of software, we determined that it is adware belonging to the AdLoad malware family. CampaignConclusion is designed to generate revenue for its deve
While reviewing new file submissions to the VirusTotal site, our researchers discovered TrustedCompress. Upon examination, we determined that this application operates as advertising-supported software (adware). TrustedCompress is part of the AdLoad malware family. This app delivers intrusive ad
"MASA Token Distribution" is a scam that is presented as an airdrop. It lures users to check their participation eligibility by connecting their digital wallets to the scheme. However, by doing so – they become victims of a cryptocurrency-draining scam. "MASA Token Distribution" is a fake
Our examination reveals that ChannelRecord is adware, a piece of software intended to exhibit advertisements. Beyond its primary role of presenting ads, ChannelRecord may also collect diverse forms of information. Thus, it is recommended to remove ChannelRecord from affected devices. Cha
"WELL Earn Eligibility" is a scam that operates as a cryptocurrency drainer. The scheme is presented as an airdrop-type event where users may receive WELL tokens. By attempting to check their eligibility for participation, users expose their cryptowallets to the scam that then begins draining them
Secles is a data-encrypting malware discovered by our research team during a routine inspection of new submissions to the VirusTotal platform. Programs that encrypt files to demand decryption ransoms are classified as ransomware. After we executed a sample of Secles on our testing system, it encr
Our analysis indicates that ElementaryFrame is an advertising-supported program designed to display advertisements. In addition to its primary function of showcasing ads, ElementaryFrame may also gather various types of information. Due to its lack of reliability and potential privacy concerns,
During analysis of ourcommonnewz[.]com, it came to our attention that the page uses clickbait to lure visitors into agreeing to receive notifications. Upon visiting ourcommonnewz[.]com, users are presented with misleading content. Also, ourcommonnewz[.]com can redirect to similar sites. Ou
While investigating new malware submissions to VirusTotal, our research team found the Ebaka ransomware. This malicious program is part of the Phobos ransomware family. Ebaka is designed to encrypt files and demands ransoms for their decryption. On our testing system, this malware altered files (
NOOSE is ransomware from the Chaos family. Once a computer is infected, NOOSE encrypts files, appends the ".NOOSE" extension, changes the desktop wallpaper, and creates the "OPEN_ME.txt" file (a ransom note). An example of how files encrypted by NOOSE are renamed: "1.jpg" is changed to "1.jpg.NOOS