During routine malware analysis, our research team discovered the Zput ransomware. This malicious program is part of the Djvu ransomware family. Zput is designed to encrypt files and demand ransoms for their decryption. On our test machine, this ransomware appended the names of encrypted files wi
While investigating malware samples, our research team discovered yet another Djvu ransomware called Zpas. Malware within this classification is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Zpas on our testing system, this ransomware encrypted file
Hokarsoud[.]com is a rogue webpage designed to push browser notification spam and lead users to other (likely unreliable/dangerous) sites. Most visitors to hokarsoud[.]com and pages akin to it access them through redirects generated by websites that utilize rogue advertising networks. Our researc
Web Ace Tab is a rogue browser extension that our research team found during a routine inspection of unreliable websites. While this piece of software promises to display abstract browser wallpapers, it also modifies certain settings to promote (via redirects) the webacetab.com fake search engine.
Our examination of the "Security Information" email revealed that it is spam promoting a phishing scam. This mail falsely claims that the recipient's email account password is about to expire, thus tricking them into disclosing this sensitive information. The spam email with the subject "S
The "You Have Received Attached Document" spam email is disguised as a notification regarding a sent file. The alleged attachment is a document concerning a contract. This phishing mail aims to obtain recipients' email account log-in credentials. The spam email with the subject "CONTRACT A
Mad Cat is a ransomware-type program discovered by our researchers during a routine inspection of new submissions to the VirusTotal platform. Malware within this classification operates by encrypting files to demand payment for its decryption. On our test machine, Mad Cat encrypted files and alte
It is common for scams promoted through spam campaigns to take advantage of ongoing crises, and this "PCRF" email is no exception. This mail's backdrop is the 2023 Israel–Hamas war, and the email is presented as a donation request from Palestine Children's Relief Fund (PCRF). It must be stressed
Art Tab Club is a rogue extension that promises to display artistic or art-depicting browser wallpaper. However, this piece of software is actually a browser hijacker. It changes browser settings to endorse (through redirects) the arttabclub.com fake search engine. It must be mentioned that this b
After analyzing the "HSBC - Payment Swift Copy" email, we determined that it is spam. Presented as a notification from HSBC regarding a payment, this letter aims to deceive recipients into providing their email account log-in credentials (passwords) to a phishing website. The scam email wi