AllaKore is a RAT (Remote Access Trojan). These trojans enable remote access and control over compromised systems. AllaKore was first detected in 2015 as an open-source RAT written in the Delphi programming language, and it possessed rather basic capabilities. However, since 2021, heavily modifie
Joker is a malware that targets Android devices. This malicious program is classed as a Remote Access Trojan (RAT). Joker operates by enabling remote access and control over machines. It is also considered to be a banking trojan, as it seeks finance-related information. Joker malware is related to
Upon analysis, it was discovered that the app functions as adware. StandartPartition, upon installation, displays intrusive advertisements to promote questionable content. Furthermore, the app may possess the ability to access and collect personal information. Therefore, it is advisable to avoid
In our thorough examination of malware samples submitted to the VirusTotal page, we have determined that Ldhy is a ransomware variant linked to the Djvu family. Ldhy encrypts files and appends its extension (".ldhy") to the filenames. For instance, it transforms "1.jpg" into "1.jpg.ldhy", "2.png"
While investigating deceptive websites, our team uncovered an installation package containing a dubious application that compels users to visit ssj4.io, a questionable search engine. Typically, browser-hijacking programs modify browser settings to promote such sites. In this case, the app abstaine
While investigating new submissions to VirusTotal, our researchers discovered the Fastbackdata ransomware. It is designed to encrypt data and demand ransoms for its decryption. This malicious program belongs to the Phobos ransomware family. Fastbackdata encrypted files and changed their filenames
Through our analysis of the malware, we determined that New24 is ransomware belonging to the Phobos family. We discovered New24 while checking the samples submitted to VirusTotal. Once activated, New24 encrypts data and demands payment for its decryption (it presents two ransom notes, "info.hta" a
CrackedCantil is a dropper malware designed to distribute a variety of malicious software, encompassing loaders, information stealers, cryptocurrency miners, proxy bots, and ransomware. The primary method of disseminating this malware involves leveraging cracked software on dubious websites or for
During our examination, we observed that DominantGeneration exhibits characteristics typical of adware. Once installed, it initiates the display of intrusive advertisements, leading to its classification as adware. It is noteworthy to highlight that such software often collects diverse data.
Our researchers discovered abelectivirean[.]com during a routine investigation of suspicious sites. Upon inspection, we determined that this rogue webpage promotes browser notification spam. Additionally, it can redirect visitors to other (likely unreliable/harmful) websites. Users primarily acce