Babylon is the name of a Remote Access Trojan (RAT). This program is designed to allow remote access and control over infected machines. Like most trojans of this kind, Babylon is multi-functional. It can perform various commands on compromised devices, and as such, it is deemed to be a high-risk
After examining the "American Express Merchant Reward" email, we determined that it is fake. This spam letter claims that the recipient has an incoming payment, to receive which – they must update and verify their account. It must be emphasized that this phishing mail is in no way associated with
While examining this page, we noticed that shows misleading content to trick visitors into agreeing to receive notifications. Also, mountaincaller[.]top redirects visitors to similar websites. Thus, it is highly advisable not to visit mountaincaller[.]top. It is worth mentioning that users rarely
While investigating new submissions to the VirusTotal site, our research team discovered the Black Hunt 2.0 ransomware. This malicious program encrypts data and demands ransoms for its decryption. On our test machine, Black Hunt 2.0 encrypted files by appending their filenames with a unique ID as
Our investigation revealed that this email is a phishing attempt, cleverly disguised as a letter from an email service provider. The scammers intend to deceive recipients into divulging sensitive personal information. To achieve this, they utilize a phishing website. The email claims that
Cactus is ransomware that encrypts data, provides a ransom note ("cAcTuS.readme.txt"), and appends the ".CTS1" extension to filenames. For instance, it renames "1.jpg" to "1.jpg.CTS1", "2.png.CTS1", and so forth. Cactus can use different encryption modes. Depending on the encryption mode used, Ca
LOCK2023 is ransomware that our malware researchers discovered while examining samples submitted to the VirusTotal website. LOCK2023 encrypts files, provides a ransom note ("README.txt"), and appends the ".LOCK2023" extension to filenames. For example, it renames "1.jpg" to "1.jpg.LOCK2023", "2.pn
FakeSG is the name of a malware campaign. It involves compromised websites that imitate the potential victim's browser and urge them to update it. However, instead of installing a browser upgrade, the victim inadvertently allows malicious software to infiltrate their device. The observed FakeSG c
HotRat is a robust Remote Access Trojan (RAT) based on the open-source AsyncRAT implementation. This malicious software empowers cybercriminals to steal sensitive data, inject additional malware, and perform other illicit activities. HotRat is typically distributed through unauthorized software do
Kizu is a ransomware variant that carries out file encryption and adds the ".kizu" extension to the filenames of all affected files. It also generates a ransom note titled "_readme.txt", which provides contact and payment instructions to the victim. Kizu is a member of the Djvu ransomware family a