During a routine investigation of new file submissions to the VirusTotal website, our research team discovered the EngineOfflineAlgorithm application. Our inspection revealed that this app is adware belonging to the AdLoad malware family. EngineOfflineAlgorithm operates by delivering intrusive
Our inspection of the "Microsoft Security Team - Password Expiration" email revealed that it is spam. This letter urges the recipient to update their email account, as its password is due to expire today. This phishing mail aims to obtain the log-in credentials of victims' emails. The scam
Upon examination, it has been determined that this email is a fraudulent attempt disguised as a notification from an email service provider. The intention behind this scam is to deceive recipients into divulging sensitive information. These deceptive communications fall into the category of phishi
Upon testing, it has become apparent that CrocutaCrocuta is a malicious extension capable of reading data on all websites, enabling the "Managed your organization" feature, and performing other actions within Chrome (and Edge) browsers. CrocutaCrocuta has been discovered after obtaining a maliciou
OptimizationSquare is a rogue app that we discovered during a routine review of new submissions to the VirusTotal website. After analyzing this application, we determined that it is advertising-supported software (adware). OptimizationSquare is part of the AdLoad malware family. Adware i
We have identified this email as a fraudulent scheme orchestrated by scammers seeking to acquire personal information from recipients. These deceptive emails are widely recognized as phishing attempts. In this case, the scammers masquerade as an email service provider to extract information.
After examining the "FedEx - Delivery Of The Suspended Package" email, we determined that it is spam. This fake letter states that the recipient has a pending package delivery. It must be stressed that the information provided by this phishing email is false, and this mail is in no way associated
We have determined that this email is a fraudulent attempt by scammers to obtain personal information from recipients. Such emails are commonly known as phishing emails. In this instance, scammers pose as an email service provider to entice recipients into revealing their information on a phishing
BlackLegion is ransomware that restricts access to files by encrypting them. Victims cannot open encrypted files without decrypting them. Additionally, BlackLegion creates a ransom note ("DecryptNote.txt") and renames files by appending a string of random characters, an email address, and the ".Bl
Based on our analysis, it has been determined that ConnectedServer is adware. ConnectedServer bombards users with annoying advertisements. Additionally, it possesses the potential to gather diverse data. Typically, applications like ConnectedServer are promoted and disseminated through deceptive