SeroXen is a fileless Remote Access Trojan (RAT) that excels in evading detection through both static and dynamic analysis methods. The malware incorporates various open-source projects, including Quasar RAT, r77-rootkit, and the command line tool NirCmd, to enhance its functionalities and capabil
Entmatchw[.]com is the address of a rogue page that is designed to trick visitors into receiving spam browser notifications. Additionally, this webpage can redirect users to other (likely unreliable/hazardous) websites. Most visitors to entmatchw[.]com and pages akin to it – access them via redir
While inspecting suspect websites, our research team found the findallincomesurvey[.]top rogue page. It is designed to endorse dubious content and browser notification spam. Furthermore, this webpage can redirect users to other (likely unreliable/dangerous) sites. Webpages like findallincomesurve
SpinOk is an Android software module that operates as spyware, gathering data on files stored on devices and potentially transmitting them to malicious individuals. Additionally, it has the ability to replace and upload clipboard contents to a remote server. This module is disseminated as a market
During the examination of malware samples submitted to VirusTotal, our team of experts in malware detection identified Weqp, a ransomware variant associated with the Djvu family. Weqp operates by encrypting data and appending the ".weqp" extension to the affected files. Additionally, it generates
During a routine inspection of untrustworthy websites, our researchers discovered the datingstyle[.]top rogue page. It promotes spam browser notifications and redirects visitors to other (likely unreliable/malicious) sites. Users most commonly access webpages like datingstyle[.]top via redirects
During our investigation, we discovered that recutasseuccars[.]com employs a deceitful tactic to entice visitors into enabling notifications. Additionally, this website redirects users to other untrustworthy websites. Our team came across recutasseuccars[.]com while examining sites associated with
Our team examined gaming-trending-news[.]com and learned that the purpose of this site is to trick visitors into agreeing to receive notifications. Gaming-trending-news[.]com displays deceptive content as a lure. Also, gaming-trending-news[.]com may redirect users to more potentially malicious pag
Gadkasdomm[.]com is a rogue page that we found during a routine investigation of suspicious websites. It operates by endorsing browser notification spam and redirecting users to different (likely dubious/malicious) sites. Most visitors to gadkasdomm[.]com and similar webpages enter them inadverte
Our researchers discovered the edrubyglo[.]buzz rogue page while investigating suspect websites. This webpage is designed to push browser notification spam, and at the time of research, it did so by employing fake CAPTCHA verification. Additionally, edrubyglo[.]buzz is capable of redirecting visit