Our team has inspected the website (getavici[.]today) and found that it is a fraudulent website designed to trick visitors into participating in a fake cryptocurrency giveaway (airdrop). Also, the site masquerades as the original Avici platform (avici.money) to appear legitimate. The purpose of th
GoodGirl is ransomware that our team has discovered during a routine inspection of malware samples uploaded to the VirusTotal platform. Upon execution, GoodGirl encrypts files, changes the desktop wallpaper, and creates a text file ("#Read-for-recovery.txt") containing a ransom note. Also, GoodGi
Our inspection indicates that clearbridgeworks.co[.]in attempts to trick users into enabling notifications through a deceptive tactic. These notifications can later be used to spread scams and promote other untrustworthy sites. It is recommended to avoid accepting notifications from websites like
We have inspected sulatinborry.co[.]in and concluded that it uses a misleading technique to trick visitors into agreeing to get its notifications. The site can misuse this permission to promote scams and other untrustworthy content. Users should avoid visiting sulatinborry.co[.]in and should never
Our analysis shows that monbridges[.]com runs the "You've Visited Illegal Infected Website" scam and requests permission to send notifications. If visitors agree to get notifications from monbridges[.]com, they risk being tricked into opening other untrustworthy and potentially malicious websites.
Our analysis has revealed that event-almanak[.]xyz is a deceptive website masquerading as the Almanak site (almanak.co) and designed to trick visitors into taking actions leading to the theft of their cryptocurrency. This fraudulent site should not be trusted to avoid the associated risks. I
Asyl is ransomware belonging to the Makop family. Our team has discovered it during an examination of samples submitted to VirusTotal. Once a device is infected with Asyl, the ransomware encrypts files, changes the desktop wallpaper, provides a ransom note ("+README-WARNING+.txt"), and modifies fi
We have reviewed the site (santagifts[.]top) and found that it is a copy of the Santa Token website (santatokensol.io). It is designed to trick visitors into connecting their wallets to participate in an airdrop (to receive free tokens). The scammers behind it aim to steal cryptocurrency by draini
Our examination has revealed that rbtchk11.co[.]in is an untrustworthy website that uses clickbait to trick visitors into consenting to receive notifications. If permission is given, rbtchk11.co[.]in can show misleading notifications (e.g., fake alerts) to promote other potentially malicious sites
While testing ProcessOffers, we uncovered that this is an unwanted application designed to deliver unwanted and annoying advertisements. Apps of this type are classified as adware. Moreover, our analysis shows that multiple security vendors flag ProcessOffers as malicious. Thus, users should avo