During the analysis of malware samples using VirusTotal, we encountered a ransomware variant known as Ptrz. This ransomware is responsible for encrypting files and altering their filenames by appending the ".ptrz" extension. Furthermore, Ptrz generates a ransom note, which can be located within a
Exodus is insidious software designed with the malevolent intent of surreptitiously infiltrating Exodus wallets used to store cryptocurrency. With a devious methodology, the Exodus wallet stealer is engineered to steal the wallets and their contents, including private keys, public keys, and the cr
Our researchers discovered the easyfondsonline[.]com rogue page while inspecting untrustworthy websites. This webpage promotes spam browser notifications and generates redirects to other (likely dubious/malicious) sites. The majority of users access pages like easyfondsonline[.]com via redirects
Comscp.co[.]in is a rogue page that we found during a routine investigation of questionable websites. It operates by pushing browser notification spam and redirecting visitors to different (likely unreliable/dangerous) sites. Users primarily enter pages like comscp.co.in through redirects generate
Our research team discovered arkakunaa[.]com during a routine investigation of suspicious websites. This rogue page is designed to promote browser notification spam. Additionally, it can redirect users to other (likely untrustworthy/harmful) sites. Most visitors to arkakunaa[.]com and similar web
Upon thorough examination of abscondslab[.]com, it has been discovered that this website utilizes a deceptive strategy known as clickbait. Abscondslab[.]com employs misleading elements, encompassing textual and visual components, to coax visitors into agreeing to receive its notifications. Consequ
Xret is a ransomware-type program that our researchers discovered while reviewing new submissions to the VirusTotal site. Malware, classed as such, is designed to encrypt data and demand payment for its decryption. On our test system, Xret encrypted files and appended their filenames with a ".XRE
Empermin[.]com is a rogue page that we discovered while inspecting untrustworthy websites. It promotes browser notification spam and redirects users to other (likely unreliable/harmful) sites. Most visitors to empermin[.]com and similar webpages enter them through redirects caused by websites that
After analyzing loloszod[.]xyz, it has come to light that this website employs a deceptive tactic called clickbait. Loloszod[.]xyz uses misleading content, including both text and visual elements, with the intention of persuading visitors to grant notification permissions. Therefore, it is recomme
Upon a detailed analysis of the CucurbitaPepo browser extension, it has become evident that this extension is unreliable. CucurbitaPepo is disseminated through a malicious installer and contains functionalities that include reading data and managing various Chrome browser settings and other compon