TradeAero is a rogue application discovered by our researchers during a routine inspection of new submissions to VirusTotal. After examining this app, we determined that it is advertising-supported software (adware) belonging to the AdLoad malware family. Adware is designed to feed users
Following a thorough analysis of FeedWild, our team has concluded that its main purpose is to show disruptive advertisements to users. These types of applications are classified as adware. It is crucial to emphasize that apps like FeedWild are often downloaded and installed without users' knowle
During our examination of Your Best World News Extension, it became clear that its purpose is to act as a browser hijacker (to promote search.best-news-world.com, a deceptive search engine). Your Best World News Extension modifies the settings of the web browser to force users to use search.best-n
Our researchers found the Dancing Tubes browser extension during a routine inspection of dubious websites. After analyzing this extension, we determined that it operates by hijacking browsers. Dancing Tubes makes alterations to browser settings in order to promote (via redirects) the search.danci
While examining malware samples submitted to VirusTotal, our team came across Wspn, a Djvu ransomware family member. Wspn's main objective is to encrypt files, and it also modifies filenames by adding the ".wspn" extension. Furthermore, it creates a ransom note named "_readme.txt". As an example,
In our investigation of Gradient Blobs, we discovered that this extension operates as a browser hijacker. Our findings revealed that its primary aim is to endorse search.gradientblobs.net, a deceptive search engine. Gradient Blobs accomplishes this by altering the settings of a web browser.
Our research team discovered the TechnoJourney app while inspecting new submissions to the VirusTotal site. This piece of software operates as adware. Additionally, TechnoJourney is part of the AdLoad malware family. Adware stands for advertising-supported software. It displays adverts o
During our analysis of newly submitted samples on VirusTotal, our researchers came across the ValueEver application. After conducting a thorough examination of ValueEver, we have found that it functions as adware. Its main purpose is to show advertisements. Pretty often, apps of this type are di
Nitrogen is a malicious campaign in which cybercriminals exploit Google and Bing ads to target users searching for specific IT tools. The objective is to infiltrate enterprise environments and inject tools like Cobalt Strike. The attackers aim to gain unauthorized access to these environments and
After analyzing VentureConnect, our team has determined that its primary function is to display bothersome advertisements to users. Such applications fall under the category of adware. It is important to highlight that it is common for apps like VentureConnect to be downloaded and installed unkn