Step-by-Step Malware Removal Instructions

Rzkd Ransomware
Ransomware

Rzkd Ransomware

During our examination of malicious software samples that were uploaded to VirusTotal, we came across ransomware dubbed Rzkd. This particular ransomware is designed to encrypt files and alter their names by appending the ".rzkd" extension. Furthermore, Rzkd generates a ransom note, which can be fo

Fonts Determiner Adware
Adware

Fonts Determiner Adware

During our analysis of the Fonts Determiner application, our team observed that it presents a range of advertisements. Consequently, we have classified Fonts Determiner as adware. It should be highlighted that software of this nature is frequently marketed and disseminated through misleading metho

PterygotusAnglicus Malicious Extension
Adware

PterygotusAnglicus Malicious Extension

During our evaluation of the PterygotusAnglicus browser extension, we identified concerning behavior, such as adding the "Managed by your organization" feature to Chrome browsers, managing certain elements of the browser, and reading various data. We came across PterygotusAnglicus while investigat

ArchiveRemote Adware (Mac)
Mac Virus

ArchiveRemote Adware (Mac)

During a routine review of new file submissions to VirusTotal, our research team discovered the ArchiveRemote application. After inspecting it, we determined that this piece of software is adware. ArchiveRemote is part of the AdLoad malware family. This app generates revenue for its developers

Tropical Extension Browser Hijacker
Browser Hijacker

Tropical Extension Browser Hijacker

Tropical Extension is a piece of rogue software that we found while inspecting suspicious sites. This extension promises to display tropics-themed browser wallpapers. Our examination revealed that Tropical Extension is a browser hijacker. It modifies browser settings to endorse (through redirects)

Key Searchs Browser Hijacker
Browser Hijacker

Key Searchs Browser Hijacker

While investigating untrustworthy websites, our researchers discovered the Key Searchs browser extension. After inspecting this piece of software, we determined that it is a browser hijacker promoting (via redirects) the keysearchs.com fake search engine. In most cases, browser hijackers m

SapphireStealer Malware
Trojan

SapphireStealer Malware

SapphireStealer is an information-stealing malware. Its codebase was released to GitHub in December 2022. Since then, several variants with differing capabilities have been discovered. Due to this, it is likely that SapphireStealer is used by multiple threat actors. It is noteworthy that this ste

HaastsEagle Malicious Extension
Adware

HaastsEagle Malicious Extension

While assessing the HaastsEagle browser extension, we encountered troubling behavior. Notably, it introduces the "Managed by your organization" feature into Chrome browsers. Our discovery of HaastsEagle occurred during the examination of a malicious installer obtained from an untrustworthy website

SuperBear RAT
Trojan

SuperBear RAT

SuperBear is the name of a Remote Access Trojan (RAT). Programs within this category operate by enabling remote access and control over devices. RATs can be highly versatile; however, research shows that SuperBear is a targeted malware. Likewise, this trojan has been used in strongly targeted att

Remo Trojan (Android)
Trojan

Remo Trojan (Android)

Remo is an Android banking Trojan that exploits the Accessibility service to illicitly acquire sensitive data. This malicious software specifically focuses on over 50 banking and cryptocurrency wallet applications. Remo primarily directs its attacks toward banking applications in the regions of Vi