During an examination of a dubious installer downloaded from an unverified website, we encountered the DinornisRobustus browser extension. Our investigation unveiled concerning characteristics associated with this application, including its ability to activate the "Managed by your organization" fe
DarkEye is the name of a stealer. This malware is designed to steal vulnerable data from infected systems. According to Zscaler, there is evidence suggesting that DarkEye is a copy of the Prynt stealer. As mentioned in the introduction, Zscaler's findings indicate that the DarkEye stealer
Upon examination of LoadInvolveOpen, it became clear that its primary purpose is to inundate users with intrusive advertisements. In simpler terms, LoadInvolveOpen operates as adware. It is crucial to emphasize that applications similar to LoadInvolveOpen are often installed by users unintention
After evaluating LeadChange, it became evident that its main objective is to overwhelm users with bothersome advertisements. In other words, LeadChange functions as adware. It is important to highlight that applications like LeadChange are frequently unintentionally installed by users due to the
After assessing the Askusdaily application, it has been ascertained that its main function is to operate as a browser hijacker, aiming to promote askusdaily.com, a deceptive search engine. This extension modifies a web browser's settings with the intent of seizing control over it. Askusdai
During our examination of the Disable Ads browser extension, we noticed that it consistently displays intrusive advertisements, classifying it as adware. Furthermore, Disable Ads has the ability to access and manipulate various forms of data. Consequently, we strongly recommend users refrain from
During a routine investigation of new submissions to the VirusTotal website, our researchers discovered the PositivePlatform app. Our examination revealed that it is advertising-supported software (adware) belonging to the AdLoad malware family. PositivePlatform is designed to run intrusive adve
Our research team discovered LaunchBrowser while investigating new submissions to the VirusTotal website. After inspecting this app, we determined that it is advertising-supported software (adware). Additionally, LaunchBrowser is part of the AdLoad malware family. Adware is designed to d
PositiveProcessor is a rogue app that we found while reviewing new file submissions to VirusTotal. After investigating this piece of software, we determined that it is adware belonging to the AdLoad malware family. PositiveProcessor operates by running intrusive ad campaigns, and it may have oth
EasyStealer is an information-stealing malware written in the Go programming language. This stealer emerged in July 2023 on a Russian hacker forum; on the 16th, EasyStealer's developers searched for beta testers, and on the 23rd – the first advert was posted. Since then, several variants of EasySt