CraxsRAT is a Remote Access Trojan (RAT) capable of infecting Android operating systems V5 through V12. RATs enable remote access and control over compromised devices. CraxsRAT is incredibly sophisticated, highly versatile, and customizable. At the time of writing, this trojan is being actively u
After thoroughly examining this email, our team has concluded that its purpose is to trick recipients into sending money to scammers or revealing their personal information. This email has been cleverly crafted to appear as a communication related to a giveaway. It is important to exercise caution
Invader is ransomware that encrypts files, appends the ".invader" extension to filenames, and changes the desktop wallpaper. An example of how Invader renames files: it changes "1.jpg" to "1.jpg.invader", "2.png" to "2.png.invader", etc. Cybercriminals behind this ransomware aim to extort money fr
After inspecting the "Carlos Slim Helu Charitable Foundation" email, we determined that it is spam. Presented as a missive from the billionaire business magnate Carlos Slim Helú, this fake letter states that the recipient was randomly selected to receive over four million US dollars. Spam mail th
Upon downloading a suspicious installer from an untrustworthy website, our team identified superstar3.io, a deceptive search engine that presents search results sourced from various other search engines. It is important to note that the installer used to promote superstar3.io may include additiona
During our analysis of Currency Conversion Extension, our team identified traits commonly associated with a browser hijacker. Typically, such applications take over web browsers by modifying their settings. It is common for browser hijackers to promote fake search engines. The Currency Con
Upon reviewing this email, our team has determined that its intent is to deceive recipients into disclosing their personal information. These types of emails are commonly known as phishing emails, and the scammers behind this particular phishing campaign are trying to lure recipients into submitti
After a thorough evaluation of the DeployPlatform application, we have determined that it displays intrusive advertisements. Such applications are typically classified as adware or advertising-supported applications. It is not unusual for users to inadvertently install adware without a complete
Our researchers discovered the DebugRootMouse application during a routine inspection of new file submissions to the VirusTotal website. After analyzing this piece of software, we learned that it is adware belonging to be AdLoad malware family. DebugRootMouse is designed to run intrusive advert
Dark Mode Ext is a rogue browser extension that promises to create a dark mode for browsers. Our researchers discovered this piece of software while investigating questionable websites. After examining Dark Mode Ext, we determined that it is a browser hijacker. This extension modifies browser set