CherryBlos is the name of a malware targeting Android operating systems. This malicious program is classified as a stealer and a clipper. It operates by extracting/exfiltrating cryptowallet credentials and rerouting cryptocurrency transactions to wallets owned by the attackers. At least four fake
Upon reviewing CloudConnectors, our team concluded that its main purpose is to present intrusive advertisements to users, classifying it as adware. Notably, applications like CloudConnectors are often downloaded and installed without users' awareness. Thus, it is recommended not to trust such ap
While checking out new submissions to VirusTotal, our research team discovered the CreativeApply app. Our analysis of this piece of software revealed that it is adware. Additionally, we learned that CreativeApply is part of the AdLoad malware family. Adware stands for advertising-support
CorporateGlobe is an adware-type application discovered by our researchers during a routine inspection of new submissions to the VirusTotal website. This app is part of the AdLoad malware family. It operates by running intrusive advertisement campaigns, i.e., CorporateGlobe's goal is to feed use
OuterSource is a rogue app that we discovered while investigating new submissions to the VirusTotal website. Our analysis of this application revealed that it is advertising-supported software (adware). OuterSource is part of the AdLoad malware family. Adware is designed to display adver
While analyzing malware samples submitted to VirusTotal, we encountered Poaz, a ransomware variant belonging to the Djvu family. Poaz employs file encryption to block access to files and alters their names by appending the ".poaz" extension. Additionally, it generates a ransom note, a text file na
Our researchers found the Kustom Tab - Your Live Tab browser extension during a routine inspection of dubious websites. After analyzing this piece of software, we learned that it is a browser hijacker. Kustom Tab - Your Live Tab makes alterations to browser settings in order to generate redirects.
In our examination of The Weather Tab, our team observed characteristics commonly linked to a browser hijacker. Typically, these applications hijack web browsers by altering their settings and often promote fake search engines. Users frequently unintentionally download and add such apps to their b
Our research team discovered FlightRemote while inspecting new submissions to the VirusTotal website. After analyzing this app, we determined that it is adware belonging to the AdLoad malware family. This piece of advertising-supported software is designed to run intrusive advertisement campaig
While analyzing malware samples on the VirusTotal platform, we encountered a ransomware variant called ZOV. This ransomware employs file encryption to block access to files and adds the ".Z0V" extension to their filenames. Additionally, it generates a ransom note named "ZoV.txt" and displays a pop