During our analysis of samples uploaded to the VirusTotal platform, our team identified Pzcqyq, a ransomware variant belonging to the Snatch family. We observed that Pzcqyq employs encryption to lock files, adds the ".pzcqyq" extension to filenames, and generates a ransom note (a file named "HOW T
After assessing ConferenceTrader, our team has determined that its primary function revolves around displaying disruptive advertisements to users, categorizing it as adware. It is important to highlight that users frequently install applications akin to ConferenceTrader without being aware of th
Our research team discovered the Proton ransomware-type program during a routine investigation of new submissions to the VirusTotal site. This malicious program belongs to the Xorist ransomware family. Malware within this classification encrypts data and demands payment for its decryption. On our
Our researchers found the FormatDash application during a routine inspection of new submissions to the VirusTotal website. After analyzing this piece of software, we learned that it is adware belonging to the AdLoad malware family. FormatDash is designed to generate revenue for its developers by
MountainVibe is a rogue application that we discovered during a routine inspection while investigating new submissions to VirusTotal. Our analysis revealed that MountainVibe is advertising-supported software (adware) and is part of the AdLoad malware family. Adware operates by running in
While investigating suspicious websites, our research team found a page promoting the "Total AV Security - Your Smartphone Is Infected" scam. It falsely claims that the visiting user's smartphone is infected with five viruses. It must be emphasized that this scam is in no way associated with the r
While examining malware samples submitted to VirusTotal, we came across Wagner, a ransomware variant associated with the Xorist family. Wagner employs encryption on files, adds the ".Wagner2.0" extension to their names, and generates a ransom note as a text file named "КАК РАСШИФРОВАТЬ ФАЙЛЫ.txt",
Our researchers discovered an adware disguised as the legitimate AdBlock browser extension while investigating deceptive websites. Genuine ad-blocking tools are designed to remove unwanted advertisements and may have other abilities, such as blocking trackers, etc. However, instead of eliminating
Through our examination of fiveminutes[.]biz, we unearthed its deceptive tactics involving persuading visitors to allow notifications. Furthermore, the website redirects users to similar pages. Our team encountered fiveminutes[.]biz while scrutinizing websites linked to dubious advertising network
While reviewing new submissions to the VirusTotal website, our researchers discovered the MachineChance application. After analyzing it, we determined that it is adware belonging to the AdLoad malware family. MachineChance is designed to run intrusive ad campaigns and may have additional harmful