After analyzing the LibraryBlog application, we found that it displays annoying advertisements. Apps that function this way are called advertising-supported applications (or adware). Typically, users install adware unknowingly. In addition to showing unwanted ads, LibraryBlog can read sensitive
Our team has discovered that updateinfoacademy[.]com presents a deceptive message with a purpose to deceive visitors into permitting it to send notifications. Furthermore, this website may redirect users to other dubious sites. Users often access sites like updateinfoacademy[.]com unknowingly or u
Super Mario 3 is the name given to a malware infection that infiltrates systems under the guise of a video game from the Super Mario franchise, specifically the fan-made Super Mario 3: Mario Forever game. The trojanized game arrives alongside XMR miner and SupremeBot mining client, and the latter
We discovered the DigitalCommand application while inspecting new submissions to VirusTotal. It operates by running intrusive ad campaigns, and due to this behavior – the app is categorized as adware. DigitalCommand also belongs to the AdLoad malware family. Adware stands for advertising
Our research team found the OperationTool adware-type app during a routine inspection of new submissions to the VirusTotal site. This piece of software belongs to the AdLoad malware family. It is designed to deliver intrusive advertisement campaigns. Adware stands for advertising-support
While investigating new submissions to VirusTotal, our researchers discovered the WAGNER ransomware. Malware of this kind is designed to encrypt files and make ransom demands for their decryption. After examining this ransomware, we learned that it appends encrypted files with a ".WAGNER" extensi
During our investigation, we uncovered that atkatj[.]com employs a deceptive tactic to obtain permission to display notifications. Additionally, this website redirects visitors to other pages. Our interaction with atkatj[.]com took place while analyzing pages linked to untrustworthy advertising ne
Theactualblog[.]com is a rogue page that we discovered while investigating untrustworthy websites. It is designed to push spam browser notifications and redirect visitors to different (likely unreliable/harmful) sites. Most visitors to theactualblog[.]com and webpages akin to it – access them via
8base is ransomware belonging to the Phobos family. Our malware researchers discovered 8base while checking the VirusTotal page for recently uploaded malware samples. The purpose of 8base is to encrypt files. Also, it provides two ransom notes ("info.hta" and "info.txt") and modifies filenames. 8
Gh0stBins is the name of a sophisticated Remote Access Trojan (RAT) written in the C++ programming language. Malware classed as such is designed to enable remote access and control over compromised machines. RATs are highly versatile malicious tools capable of performing a variety of actions on in