JSOutProx is a JScript-based Remote Access Trojan (RAT). Malware within this classification operates by enabling remote access and control over infected machines. RATs tend to be highly multifunctional pieces of software capable of performing various actions. JSOutProx has been in use since at le
ObserverStealer is an information-stealing malware. It is available for purchase at a price of $150 per month, targeting Windows operating systems from Windows 8.1 to Windows 11. The creators of ObserverStealer claim that the malware is still in Beta, indicating ongoing development and potential f
Securecaptcha[.]top is a rogue page that promotes browser notification spam and redirects visitors to other (likely untrustworthy/malicious) sites. Our research team discovered this webpage while investigating suspicious websites. Most visitors to pages like securecaptcha[.]top access them via re
During our examination of landscapestab.com, we determined that it operates as a fake search engine that displays results sourced from another search engine. Fake search engines like landscapestab.com are typically promoted through browser hijackers, which alter the settings of web browsers.
Upon careful examination, we have determined that the email in question has been crafted by scammers who impersonate an email service provider with malicious intentions. Their objective is to deceive recipients into divulging sensitive information on a fraudulent page (a phishing site). Consequent
While analyzing newly submitted samples on VirusTotal, our researchers recently encountered the SearchEmpire application. After thoroughly examining the software, we have confirmed that SearchEmpire operates as adware. Its primary function is to display advertisements and may possess other poten
We found the allhypefeed[.]com rogue page while reviewing untrustworthy websites. It operates by endorsing spam browser notifications and redirecting users to other (likely dubious/malicious) sites. Most users access webpages like allhypefeed[.]com via redirects generated by sites that employ rogu
Our research team found the EliteMaximus rogue application during a routine investigation of new submissions to VirusTotal. Following our examination, we determined that this app is adware belonging to the AdLoad malware family. EliteMaximus runs intrusive advertisement campaigns and collects pr
While inspecting browser-hijacking software, our research team discovered the underwaternewtab.com fake search engine. Websites within this classification are typically incapable of providing search results, so they generate redirects to legitimate search engines. These bogus sites are commonly p
ViewpointTools is a rogue application that we discovered while inspecting new submissions to the VirusTotal site. Our analysis of this app revealed that it is advertising-supported software (adware). Additionally, ViewpointTools is part of the AdLoad malware family. Adware enables the pl