XI New Tab is a rogue extension promising to display browser wallpapers. Our research team discovered it while investigating untrustworthy websites. After analyzing XI New Tab, we learned that it makes modifications to browser settings in order to promote (through redirects) the xitabs.com fake s
Knight ransomware is the rebrand of Cyclops. Malware within this classification is designed to encrypt files and demand ransoms for their decryption. When we executed a sample of Knight on our test system, it began encrypting files and appended their filenames with a ".knight_l" extension. For ex
While inspecting new submissions to the VirusTotal website, our researchers discovered the Tasa malicious program. It is part of the Djvu ransomware family. Programs within this classification operate by encrypting data and making ransom demands for its decryption. After we launched a sample of T
Our research team discovered another ransomware from the Djvu family called Taoy during a routine inspection of new submissions to the VirusTotal website. Ransomware is designed to encrypt data and demand payment for its decryption. On our test machine, Taoy encrypted files and appended their tit
Our research team found the MediaScape - New Tab browser extension while investigating dubious websites. This extension promises to display browser wallpapers. After analyzing this piece of software, we determined that it is a browser hijacker. MediaScape - New Tab make the changes to browser set
Our researchers discovered S.H.O ransomware during a routine review of new submissions to the VirusTotal website. Malicious programs within the ransomware classification are designed to encrypt data and demand payment for its decryption. Once we executed a sample of S.H.O on our test system, it b
"Capital One SECURITY MESSAGE" is a phishing email. It is disguised as a notification from Capital One regarding an incoming payment to the recipient's account. Supposedly, the payment verification process requires them to sign in through an attached HTML document, which is a phishing file that re
Our researchers discovered the New Tab Nature browser extension while investigating untrustworthy sites. This piece of software promises to display nature-themed browser wallpapers. After analyzing this extension, we determined that it is a browser hijacker. New Tab Nature makes modifications to b
Joyful Quotes is a browser extension promising to display quotes from famous writers and figures. Our research team discovered this piece of software while inspecting dubious websites. After analyzing Joyful Quotes, we determined that it is a browser hijacker. This extension modifies browser sett
VantageGains is a rogue application that our researchers discovered while investigating VirusTotal website. After analyzing this piece of software, we determined that it is adware. VantageGains is part of the AdLoad malware family. This app operates by running intrusive ad campaigns. Adw