While examining an installer downloaded from an untrustworthy website, we came across the DromaiusNovaehollandiae browser extension. The analysis revealed troubling functionalities associated with this extension, including its capacity to enable the "Managed by your organization" feature in the Ch
Ttza is a ransomware variant that conducts file encryption and appends the ".ttza" extension to the filenames of all the files it affects. Additionally, it generates a ransom note named "_readme.txt", which contains contact information and payment instructions. Ttza belongs to the Djvu ransomware
While analyzing malware samples submitted to the VirusTotal page, we encountered the Ttap ransomware. This malicious software encrypts a range of files and appends the ".ttap" extension to their filenames. Moreover, the ransomware creates a text file (named "_readme.txt") that contains a ransom no
Our researchers discovered the ProgressLauncher adware while investigating new submissions to the VirusTotal site. This application is part of the AdLoad malware family. ProgressLauncher is designed to generate revenue for its developers by feeding users with undesirable and potentially maliciou
OriginalNavigation is a rogue application discovered by our researchers during a routine inspection of new file submissions to VirusTotal. Our analysis revealed that this app is adware belonging to the AdLoad malware family. OriginalNavigation operates by running intrusive ad campaigns and may h
Our inspection of "Email Requires A Mandatory Authentication" revealed that it is a phishing scam. This spam mail claims that the recipient's email account needs to be authenticated. The goal is to deceive recipients into disclosing their log-in credentials. The email with the subject "[re
After reviewing the "Money Order Check" letter, we determined that it is a phishing email that also aims to scam recipients out of their money. This spam mail is presented as a letter from Jill Biden – the first lady of the United States, the wife of Joe Biden – the 46th president of the United S
While examining a dubious installer obtained from an untrustworthy website, the Cirrostratus browser extension has been discovered. The analysis revealed troubling attributes linked to this app, such as its capacity to enable the "Managed by your organization" feature within the Chrome browser, co
While investigating unreliable websites, our research team discovered the checkmerobotornot[.]com rogue page. It is designed to promote spam browser notifications; at the time of research, the webpage did so by utilizing fake CAPTCHA verification. Additionally, it can redirect visitors to other (l
Our researchers discovered the Byee ransomware-type program during a routine inspection of new malware submissions to the VirusTotal platform. Malicious software within this classification is designed to encrypt data and demand ransoms for its decryption. On our test machine, Byee encrypted files