Steloj is a ransomware-type program designed to encrypt data and demand ransoms for its decryption. Our research team discovered this malicious program while investigating new submissions to the VirusTotal website. After we executed a sample of Steloj on our test system, it encrypted files and ap
After reviewing the WillowAmaze application, it has come to our attention that it displays intrusive advertisements. Such software falls under the classification of adware. Users frequently install apps like WillowAmaze without fully understanding the potential ramifications they can have.
While checking out new file submissions to VirusTotal, our research team found the MapperGrid application. After inspecting it, we determined that this app is advertising-supported software (adware). MapperGrid is part of the AdLoad malware family. Adware is designed to enable the placem
Our team inspected the MyThing Search New Tab browser extension and learned that it acts as a browser hijacker. The purpose of this app is to promote mythingsearch.com, a fake search engine. MyThing Search New Tab achieves this by changing the settings of the affected browser. Typically, users add
Our researchers found the Kuiper ransomware during a routine inspection of new submissions to the VirusTotal website. This malicious program is designed to encrypt data and demand ransoms for its decryption. Once we executed a sample of Kuiper on our test system, it began encrypting files. Filena
Since late June 2023, an Android banking trojan named MMRat has been focusing on mobile users in Southeast Asia. This trojan is capable of capturing both user input and screen activity while also allowing remote control of targeted devices through diverse methods. This enables the attackers to con
ErrorWindows is ransomware that prevents victims from using/accessing their data by encrypting it. We discovered ErrorWindows during our examination of samples submitted to VirusTotal. Our team found that ErrorWindows is part of the Xorist family. Additionally, it renames files (appends the ".erro
Upon inspecting the EssenceSkill application, we noticed that it shows invasive advertisements. These kinds of programs are categorized as adware. Users often install adware without fully grasping the potential consequences it can bring about. It is recommended not to have apps of this type inst
In our analysis of malware samples submitted to VirusTotal, we discovered a ransomware variant known as Teza. This ransomware encrypts files and changes their filenames by adding the ".teza" extension. Additionally, Teza creates a ransom note in the form of a text file named "_readme.txt". To ill
Rentlysearchin[.]com is a rogue site designed to trick visitors into receiving spam browser notifications. It can also generate redirects to other (likely unreliable/hazardous) websites. Most users access pages like rentlysearchin[.]com via redirects caused by sites that utilize rogue advertising