Step-by-Step Malware Removal Instructions

PterygotusAnglicus Malicious Extension
Adware

PterygotusAnglicus Malicious Extension

During our evaluation of the PterygotusAnglicus browser extension, we identified concerning behavior, such as adding the "Managed by your organization" feature to Chrome browsers, managing certain elements of the browser, and reading various data. We came across PterygotusAnglicus while investigat

ArchiveRemote Adware (Mac)
Mac Virus

ArchiveRemote Adware (Mac)

During a routine review of new file submissions to VirusTotal, our research team discovered the ArchiveRemote application. After inspecting it, we determined that this piece of software is adware. ArchiveRemote is part of the AdLoad malware family. This app generates revenue for its developers

Tropical Extension Browser Hijacker
Browser Hijacker

Tropical Extension Browser Hijacker

Tropical Extension is a piece of rogue software that we found while inspecting suspicious sites. This extension promises to display tropics-themed browser wallpapers. Our examination revealed that Tropical Extension is a browser hijacker. It modifies browser settings to endorse (through redirects)

Key Searchs Browser Hijacker
Browser Hijacker

Key Searchs Browser Hijacker

While investigating untrustworthy websites, our researchers discovered the Key Searchs browser extension. After inspecting this piece of software, we determined that it is a browser hijacker promoting (via redirects) the keysearchs.com fake search engine. In most cases, browser hijackers m

SapphireStealer Malware
Trojan

SapphireStealer Malware

SapphireStealer is an information-stealing malware. Its codebase was released to GitHub in December 2022. Since then, several variants with differing capabilities have been discovered. Due to this, it is likely that SapphireStealer is used by multiple threat actors. It is noteworthy that this ste

HaastsEagle Malicious Extension
Adware

HaastsEagle Malicious Extension

While assessing the HaastsEagle browser extension, we encountered troubling behavior. Notably, it introduces the "Managed by your organization" feature into Chrome browsers. Our discovery of HaastsEagle occurred during the examination of a malicious installer obtained from an untrustworthy website

SuperBear RAT
Trojan

SuperBear RAT

SuperBear is the name of a Remote Access Trojan (RAT). Programs within this category operate by enabling remote access and control over devices. RATs can be highly versatile; however, research shows that SuperBear is a targeted malware. Likewise, this trojan has been used in strongly targeted att

Remo Trojan (Android)
Trojan

Remo Trojan (Android)

Remo is an Android banking Trojan that exploits the Accessibility service to illicitly acquire sensitive data. This malicious software specifically focuses on over 50 banking and cryptocurrency wallet applications. Remo primarily directs its attacks toward banking applications in the regions of Vi

Signed Agreement Email Scam
Phishing/Scam

Signed Agreement Email Scam

"Signed Agreement" is a phishing email. It attempts to lure the recipient into providing their email account log-in credentials into the attachment (phishing file) by claiming that it contains remittance information. Victims of this spam mail can lose their emails and experience other serious issu

View And Upload Required Documents Email Scam
Phishing/Scam

View And Upload Required Documents Email Scam

Our team has reviewed this email and found that its intent is to entice recipients into revealing their personal information. It includes a file that presents a fake form, prompting users to share sensitive details. It is imperative to disregard such emails. In this phishing email, the sen