While investigating untrustworthy sites, our researchers found this page that imitates the official ApeX Protocol website. The purpose of this scam webpage is to trick victims into exposing their digital wallets to a cryptocurrency drainer designed to steal wallet-stored funds. IMPORTANT NOT
While reviewing new submissions to the VirusTotal platform, our researchers discovered the Sns ransomware. It is designed to encrypt data and demand a ransom for the decryption. This malicious program is part of the Makop ransomware family. On our testing system, Sns encrypted files and renamed t
YiBackdoor is a piece of malicious software classified as a backdoor. Malware of this kind is designed to open a "backdoor" into systems for further infections. Some backdoors can also download/install payloads, and YiBackdoor utilizes various plug-ins to this effect. This malicious program has b
Our inspection of this "Email Storage Failure" message revealed that it is spam. It alerts the recipient that they may experience email service interruptions due to the account reaching storage capacity. The goal is to lure victims into revealing their email account log-in credentials to a phishin
Jokdach is ransomware, a type of malware designed to encrypt files on the infected device. Our discovery of Jokdach occured while analysing malware samples uploaded to VirusTotal. In addition to encrypting files, Jokdach appends its extension (".jokdach") to files and generates a ransom note ("!!!
Our team has reviewed the email and concluded that it is a sextortion scam. Its purpose is to trick recipients into believing that their computers have been compromised and paying a ransom. All claims made in this scam email are untrue. Recipients should ignore this message. The email clai
Our analysis shows that the site is a scam featuring a fake Windows Defender alert. It is crafted to trick visitors into believing that there is an issue with their computers and calling a number operated by fraudsters. This type of fraud is called a tech support scam and should be ignored and avo
We have inspected the site and discovered that it is a scam involving a fake Facebook alert. The goal is to deceive unsuspecting visitors into calling the provided number (contacting scammers). Such deceptive schemes are known as technical support scams. They should be avoided and ignored.
Olymp Loader is a Malware‑as‑a‑Service sold on underground forums and Telegram. The developer claims it is written in assembly and advertises it as FUD (Fully Undetectable). The loader is priced at $50 (basic), $100 (tweaked), and $200 (with custom code and injection into legitimate programs).
Our team has reviewed the page (microbiodao[.]com) and found that it is designed to trick visitors into "participating" in a fake airdrop (a cryptocurrency giveaway). Moreover, the site mimics the original Microbiome DAO platform (microbiomedao.com). Its purpose is to drain crypto wallets. I