During our investigation of suspicious advertising networks, our team discovered atoionanruman[.]com, a website known for displaying a deceptive message aimed at persuading visitors to enable notifications. It is worth noting that users often land on pages like atoionanruman[.]com unintentionally,
While examining web pages associated with unreliable advertising networks, we came across fullpcchain[.]com. Our investigation uncovered that fullpcchain[.]com is an untrustworthy website that promotes the "McAfee - Your PC is infected with 5 viruses!" scam. Additionally, fullpcchain[.]com request
During the analysis of malware samples submitted to VirusTotal, our team discovered Bhui ransomware, which is part of the Djvu ransomware family. Once a computer is infected, Bhui encrypts files and appends the ".bhui" extension to their original filenames. For example, a file named "1.jpg" gets r
During our analysis of malware samples submitted to VirusTotal, we encountered Bhtw, a ransomware variant belonging to the Djvu family. Bhtw encrypts files and appends the ".bhtw" extension to their names. Additionally, it generates a ransom note, a text file named "_readme.txt". An example of ho
During our investigation into suspicious advertising networks, our team encountered vexvideo[.]cam, an untrustworthy website that employs clickbait to deceive visitors into subscribing to its notifications. It should be noted that most users come across these pages unintentionally. Vexvide
Based on our analysis, audience-info[.]xyz is an untrustworthy website that employs a deceptive tactic to manipulate visitors into subscribing to its notifications. Users typically encounter sites like audience-info[.]xyz unintentionally, and our team came across it during the investigation of oth
InterfaceHelper is a rogue application that we discovered while inspecting new submissions to VirusTotal. After analyzing this app, we determined that it is adware belonging to the AdLoad malware family. InterfaceHelper displays ads on various interfaces and may have additional harmful functiona
Our researchers found the SkilledModuleSearch app while investigating new submissions to the VirusTotal site. It is a piece of advertising-supported software (adware). Additionally, SkilledModuleSearch is part of the AdLoad malware family. Adware is designed to run intrusive advertisemen
Trendysearches.com is the address of a fake search engine that provides inaccurate and potentially harmful search results. Websites of this kind are usually promoted (via redirects) by browser hijackers. Illegitimate search engines and the software endorsing them usually collect vulnerable user da
RustyStealer is a piece of malicious software classed as a stealer. Malware within this class is designed to steal data. These malicious programs extract and exfiltrate information, and RustyStealer is not an exception. Following successful infiltration, stealer-type malware begins its ope