MinlWon is a ransomware that we discovered during a routine investigation of new submissions to VirusTotal. Malware of this kind is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of MinlWon on our test system, it encrypted files and appended their files
During a routine inspection of new submissions to VirusTotal, our research team discovered the DigitalEntry application. After investigating this piece of software, we learned that it is adware from the AdLoad malware family. DigitalEntry operates by running intrusive advertisement campaigns, an
TargetWare is ransomware - malware that encrypts files to deny access. Additionally, TargetWare provides a ransom note (in the "decrypt_Last_Chance.html" file) and renames files. This ransomware replaces filenames with a string of random characters. For instance, it replaces "1.jpg" with "3E90344
Kafan is a ransomware-type program that our researchers discovered while investigating new submissions to VirusTotal. Malware within this class is designed to encrypt data and demand payment for its decryption. After we executed a sample of Kafan on our test machine, it encrypted files and append
Upon inspecting worde[.]click, we concluded that this page shows deceptive messages, downloads a file, and asks for permission to show notifications. Our team stumbled upon worde[.]click during examination of websites that use rogue advertising networks and display dubious advertisements. Users ac
Our research team discovered the DivisionType application during a routine inspection of new submissions to VirusTotal. After analyzing this app, we determined that it is adware belonging to the AdLoad malware family. Meaning that DivisionType operates by running intrusive advertisement campaign
While inspecting Skynetlock, our team discovered that it is one of the ransomware variants belonging to the MedusaLocker family. We found Skynetlock while checking the VirusTotal site for recently submitted malware samples. The purpose of Skynetlock is to encrypt files. Additionally, Skynetlock a
Raspberry Robin is a highly sophisticated malware (worm) known for evading detection and employing unique tactics. In the past year, it has become one of the most widely distributed malware in use by various threat actors to distribute other malicious software, including Clop ransomware and IcedID
Our research team discovered the Gold ransomware-type program while investigating new malware submissions to VirusTotal. This malicious program is part of the Xorist ransomware family. Once we launched a sample of Gold (Xorist) ransomware on our testing system, it began encrypting files and chang
Our investigation revealed that Yearn New Tab is a browser extension designed to hijack a web browser by changing some of its settings. Also, Yearn New Tab can read various data. A big part of browser-hijacking apps is promoted and distributed using shady methods. Thus, users often download and ad