Step-by-Step Malware Removal Instructions

Self-Extracting Archive (SFX) Malware
Trojan

Self-Extracting Archive (SFX) Malware

Self-extracting (SFX) archive files have traditionally been used to share compressed data with individuals who do not have the software to unpack and view the contents of a standard archive file. Nevertheless, these files can harbor covert malicious functionality that is not readily apparent to us

Predator Spyware (Android)
Trojan

Predator Spyware (Android)

Predator is the name of spyware (malicious software) targeting Android users. Between August and October 2021, the attackers utilized zero-day exploits that targeted Chrome and the Android OS to install Predator spyware implants on Android devices, even those that were fully up-to-date. It

Lepigthree.xyz Ads
Notification Spam

Lepigthree.xyz Ads

While examining lepigthree[.]xyz, we noticed that it wants to show untrustworthy notifications. Lepigthree[.]xyz displays a deceptive message to lure visitors into agreeing to receive its notifications. We discovered lepigthree[.]xyz while inspecting other dubious websites. Lepigthree[.]xy

Andrew Tate Crypto Giveaway Scam
Phishing/Scam

Andrew Tate Crypto Giveaway Scam

Upon investigating this scam, we have determined that it is a classic crypto giveaway scam that purports to be orchestrated by a public figure (in this instance, Andrew Tate). The scammers' objective behind it is to dupe unsuspecting individuals into transferring their cryptocurrency funds. It is

Critical Threat Detected: Adware App POP-UP Scam
Phishing/Scam

Critical Threat Detected: Adware App POP-UP Scam

While examining this scam, our team learned that it is a technical support scam delivered by a deceptive website designed to trick unsuspecting visitors into calling a fake number (contacting scammers). This scam page displays multiple fake messages urging visitors to take immediate action. Typica

BlackByteNT Ransomware
Ransomware

BlackByteNT Ransomware

BlackByteNT is ransomware that blocks access to files by encrypting them. Also, BlackByteNT modifies filenames and creates a text file (a ransom note) named "BB_Readme_[random_string].txt". It renames files by replacing their names with a string of random characters and appending the ".blackbytent

WiKoN Ransomware
Ransomware

WiKoN Ransomware

During our examination of malware samples submitted to VirusTotal, we discovered ransomware belonging to the Xorist family dubbed WiKoN. This ransomware encrypts files, appends the ".WiKoN" extension to filenames, changes the desktop wallpaper, creates the "HOW TO DECRYPT FILES.txt" file (a ransom

Authentication Required Email Scam
Phishing/Scam

Authentication Required Email Scam

Upon inspection, we have determined that this email is fraudulent and contains an attachment. It intends to mislead unsuspecting individuals into divulging personal information. Such emails are referred to as phishing emails. It is advised that recipients disregard such emails. This email

Justcoolcaptcha.top Ads
Notification Spam

Justcoolcaptcha.top Ads

After analyzing justcoolcaptcha[.]top, we discovered that this website displays a deceptive message and requests authorization to display notifications. Also, justcoolcaptcha[.]top may redirect to other sites of this kind. We came across justcoolcaptcha[.]top while scrutinizing sites that employ f

Charmant Ransomware
Ransomware

Charmant Ransomware

While checking the VirusTotal website for recently submitted malware samples, we discovered Charmant ransomware. This malware encrypts data, appends the ".charmant" extension to filenames, and creates a ransom note (the "#RECOVERY#.txt" file). An example of how Charmant renames files: it changes