While analyzing malware samples on the VirusTotal platform, we encountered the Hgfu ransomware belonging to the Djvu malware family. Upon infiltrating a computer, this ransomware encrypts data and adds the ".hgfu" extension to file names. For example, a file originally named "1.jpg" transforms int
During our examination of malware samples submitted to VirusTotal, we came across a ransomware variant identified as Hgew. This particular ransomware is designed to encrypt files and alter their filenames by appending the ".hgew" extension. Furthermore, Hgew generates a ransom note, which can be l
Totalsystematicpcanalytic[.]info is a rogue webpage designed to promote scams and spam browser notifications. It can also redirect users to other (likely unreliable/harmful) websites. Most visitors to pages of this kind access them through redirects generated by sites utilizing rogue advertising
Our research team discovered the DominantNetwork adware-type app while checking out new file submissions to the VirusTotal website. This application is part of the AdLoad malware family. It is designed to run intrusive advertisement campaigns. Adware stands for advertising-supported soft
Our research team found the AI Image of the Day browser extension during a routine investigation of deceptive websites. This extension is endorsed as a tool that displays Artificial Intelligence (AI) generated browser wallpapers. After testing this piece of software, we determined that it is a br
Our research team discovered the DefaultBoost rogue application during a routine inspection of new file submissions to VirusTotal. After examining this app, we determined that DefaultBoost is adware belonging to the AdLoad malware family. It is designed to generate revenue for its developers by
Purrfect Tab is promoted as an extension that displays feline-themed browser wallpapers. Our researchers discovered this piece of software while investigating suspicious websites. After analyzing Purrfect Tab, we determined that it is a browser hijacker. It modifies browser settings in order to ca
During a routine inspection of new submissions to the VirusTotal website, our research team discovered the DesktopMapper app. Our examination of it revealed that this piece of software is adware. DesktopMapper belongs to the AdLoad malware family. Adware stands for advertising-supported
ConnectionProjector is a rogue application that we discovered while reviewing new file submissions to the VirusTotal site. Our examination of this piece of software revealed that ConnectionProjector is adware belonging to the AdLoad malware family. Adware stands for advertising-supported
Our research team discovered the Swift Searcher browser extension while checking out deceptive sites. After inspecting this extension, we determined that it is browser-hijacking software. Swift Searcher makes changes to browser settings in order to promote (through redirects) the search.swiftsearc