Krize is ransomware that our team discovered while examining samples uploaded to the VirusTotal platform. We found that Krize encrypts files, appends the ".krize" extension to filenames, changes the desktop wallpaper, and creates a file named "leia_me.txt" containing a ransom note. An example of
After analyzing the LaneAnnual application, our team has identified characteristics that classify it as adware. Adware developers often employ dubious tactics for promotion and distribution. Thus, users often download and install apps like LaneAnnual inadvertently. It is recommended not to trust
Privacy-onbrowser[.]com is a rogue page that promotes scams and browser notification spam. Additionally, it can redirect visitors to different (likely untrustworthy/malicious) websites. Most visitors to privacy-onbrowser[.]com and webpages akin to it – access them through redirects generated by s
Our researchers discovered the CycleGraph rogue app while investigating new submissions to the VirusTotal site. After examining CycleGraph, we determined that it is advertising-supported software (adware). This app is part of the AdLoad malware family. Adware is designed to display adver
Majorinryes[.]com is a rogue webpage that we discovered while investigating untrustworthy sites. It is designed to promote browser notification spam and redirect visitors to other (likely unreliable/dangerous) websites. Users primarily access pages like majorinryes[.]com via redirects generated b
SolutionsApproach is a rogue application that our research team discovered while inspecting new submissions to VirusTotal. Our analysis revealed that this app is adware belonging to the AdLoad malware family. It is designed to generate revenue for its developers by running intrusive advertisemen
Our research team discovered the Tabtonews rogue browser extension during a routine inspection of untrustworthy websites. After investigating this piece of software, we determined that it is a browser hijacker. Tabtonews makes modifications to browser settings in order to promote (through redirect
Despite being advertised as an app aimed at providing daily inspiration and creativity for photographers, we discovered that Daily Inspiration for Photographers is, in fact, a browser hijacker. This app promotes a fake search engine by tampering with certain browser settings. As a result, trusting
BIDON is a new variant of the MONTI ransomware. Programs within the ransomware category are designed to encrypt files and demand payment for their decryption. After we executed a sample of BIDON on our test system, it began encrypting files. The filenames of affected files were appended with a ".
While analyzing the RootCompact application, we noticed its tendency to display intrusive advertisements. These types of applications are typically classified as adware, as they are supported by advertising. Users often unknowingly install apps like RootCompact without fully understanding their