Step-by-Step Malware Removal Instructions

Auto Ransomware
Ransomware

Auto Ransomware

While examining malware samples submitted to the VirusTotal website, we discovered a ransomware variant dubbed Auto. This ransomware is identical to Septwolves, Wanqu, Axxes, and many other ransomware variants. Auto encrypts files and two ransom notes ("RESTORE_FILES_INFO.hta" and "RESTORE_FILES_I

Paid/Unpaid Invoice Email Scam
Phishing/Scam

Paid/Unpaid Invoice Email Scam

After reviewing the email, we have determined that it is a phishing attempt by scammers seeking to obtain sensitive information. The email appears to be about an invoice, but it is actually an elaborate hoax, complete with a bogus HTML file attachment. Recipients should not engage with this email

Ice Breaker Malware
Trojan

Ice Breaker Malware

Ice Breaker is a backdoor-type malware written in Node.js. Campaigns involving this malicious program were first identified in 2022 by Security Joes. These attacks targeted the gaming and gambling industries and were particularly recognizable due to the social engineering techniques employed by th

Foundation For Humanitarian Work Email Scam
Phishing/Scam

Foundation For Humanitarian Work Email Scam

We have examined this email and determined that it is a typical inheritance scam. Usually, scammers send such emails to trick recipients into parting with their money and (or) sharing their credit card details or other sensitive information. Emails of this type should be ignored. Scammers

News-wemipo.cc Ads
Notification Spam

News-wemipo.cc Ads

While investigating dubious websites, our research team discovered the news-wemipo[.]cc rogue page. It pushes browser notification spam by using adult-themed clickbait. Additionally, news-wemipo[.]cc can redirect users to other (likely untrustworthy/malicious) sites. Visitors to rogue webpages ty

Lottolore Email Scam
Phishing/Scam

Lottolore Email Scam

After inspecting this "Lottolore" email, we determined that it is spam. It is presented as a notification regarding a lottery prize that the recipient has won. It must be emphasized that this email is fake and it is not associated with any legitimate lotteries. The spam letter with the sub

DHL Express - AWB & Shipping Doc Email Virus
Phishing/Scam

DHL Express - AWB & Shipping Doc Email Virus

After inspecting this "DHL Express - AWB & Shipping Doc" email – we determined that it is malspam (malicious spam). The scam letter is presented as a message regarding shipping documentation from DHL Express. It must be emphasized that this email is fake, and it is in no way associated with th

Images Switcher Adware
Adware

Images Switcher Adware

Our team found that the Images Switcher browser extension is an advertising-supported app after conducting a thorough examination. This extension displays intrusive advertisements. Our team discovered Images Switcher on a questionable website. Users often unknowingly download and install (or add)

NEVADA Ransomware
Ransomware

NEVADA Ransomware

NEVADA is the name of ransomware targeting Windows and Linux operating systems. It is written in the Rust programming language. NEVADA encrypts files, appends the ".NEVADA" extension to filenames, and drops its ransom note (the "readme.txt" file) in folders containing encrypted files. An example

Please Find Attached My CV Email Virus
Phishing/Scam

Please Find Attached My CV Email Virus

After inspecting this "Please Find Attached My CV" email, we determined that it is malspam. This spam letter is presented as a CV submission from a party interested in working for the recipient's company. The file attached to this email is designed to infect devices with the Agent Tesla malware.