CustomerLoader is a malicious program designed to cause chain infections. In other words, it loads additional malicious components and programs onto compromised devices. All known CustomerLoader infections relied on the DotRunpeX injector trojan to infiltrate the final payload. Over forty malware
While examining this email, our team determined that it is a fraudulent phishing attempt. The email is crafted by scammers who falsely claim to represent Zelis, a genuine company operating in the healthcare technology sector. The intention of these scammers is to deceive recipients into divulging
While examining malware samples on VirusTotal site, our team discovered a ransomware variant named Available_for_trial. The purpose of Available_for_trial is to encrypt data. In addition to encrypting files, Available_for_trial renames files and creates a ransom note ("how_to_decrypt.hta"). Avail
Lucky is the name of a ransomware-type program that our researchers discovered during a routine inspection of new submissions to the VirusTotal website. This malicious program is part of the Phobos ransomware family. On our test machine, Lucky encrypted files and altered their filenames. Original
We have examined this email and determined that it is a scam. It is crafted to lure visitors into providing personal information on a phishing website. The scammers pose as an email service provider to gain recipients' trust. It is strongly advised to avoid interacting with any links within such e
Our team has examined the page and learned that it shows deceptive messages to trick visitors into believing that their Avast Antivirus license has expired. Usually, such websites are generated by affiliates seeking commission by endorsing legitimate software. However, it is important to exercise
We have examined this email and determined that it is a lottery scam. This email claims that recipients have won a large sum of money in sweepstakes, despite never having participated. Typically, such emails urge recipients to provide personal information or pay money to claim the prize. Recipient
While investigating dubious websites, our research team discovered the NX Gone browser extension. It is promoted as a tool that aids novice users in navigating the Internet. However, after inspecting this extension, we determined that it is advertising-supported software (adware). Adware a
Our researchers found the PhaseAware app while inspecting new submissions to the VirusTotal website. When we examined this application, we learned that it is adware belonging to the AdLoad malware family. PhaseAware is designed to generate revenue for its developers by feeding users with unwante
Our inspection of the "DHL Delivery Payment" email revealed that it is fake. This spam letter claims that the recipient has to make a payment to have their package delivered to their home. It must be emphasized that this email is a scam, and it is in no way associated with the DHL delivery company