While investigating new file submissions to the VirusTotal website, our research team discovered the Blackoutware ransomware. It is designed to encrypt data and demand ransoms for its decryption. On our test machine, Blackoutware encrypted files and appended their filenames with a ".blo" extensio
We have identified this as a fraudulent scheme designed to obtain sensitive information. Perpetrators behind this scam deploy deceitful SMS and Facebook messages, luring users to open a misleading page and disclose their Facebook login credentials. It is strongly advised to disregard these message
It has been determined that ApteryxOwenii is a malicious extension with several capabilities that raise concerns. This app can enable the "Managed by your organization" feature in Chrome and Edge browsers, manage apps and themes in browsers, and read various information. It is important to note th
Upon evaluating the LegionRelic application, we discovered its operation as adware, showcasing questionable advertisements. Additionally, there exists a potential risk of LegionRelic gaining unauthorized access to and gathering diverse user information. Consequently, it is advisable to uninstall
The ransomware variant dubbed Gyza, which has been discovered during an examination of malware samples on VirusTotal, is linked to the Djvu family. Gyza encrypts files, appends its extension, and delivers a ransom note ("_readme.txt"). Notably, it modifies filenames by adding the ".gyza" extensio
Our researchers discovered the EscapeUpdate app during a routine investigation of new file submissions to the VirusTotal site. After analyzing this piece of software, we learned that it is adware belonging to the AdLoad malware family. EscapeUpdate operates by feeding users with unwanted and dec
Smart Seeker is a rogue browser extension. It makes changes to browser settings in order to promote (through redirects) the smartseeker.info fake search engine. Due to this behavior, Smart Seeker is categorized as a browser hijacker. On our test machine, Smart Seeker reassigned the browser
While inspecting untrustworthy sites, our researchers discovered a webpage promoting a dubious installation setup. This installer contained the CanisLupus browser extension. Upon investigation, we determined that it is capable of managing browsers, which allows for varied manipulation of the soft
Having scrutinized the email associated with this scam, we have concluded that the scammers orchestrating it intend to entice unsuspecting individuals into revealing sensitive information. Their primary objective is to pilfer cryptocurrency wallets. Therefore, it is imperative to disregard both th
Our research team found the BootEfficient app while reviewing submissions to the VirusTotal platform. After examining BootEfficient, we determined that it is advertising-supported software (adware). This application is part of the AdLoad malware family. It runs intrusive advertisement campaigns