Rec_rans is the name of malware that operates as ransomware. Our team discovered it while examining malware samples on VirusTotal. Rec_rans encrypts files on the infected computer, changes the desktop wallpaper, drops the "HOW_TO_RECOVERY_FILES.txt" file containing a ransom note, and adds the ".re
BlackSuit is ransomware - malware that prevents victims from accessing their files by encrypting them. BlackSuit targets Windows and Linux users. In addition to encrypting data, this ransomware changes the desktop wallpaper, creates the "README.BlackSuit.txt" file (a ransom note), and renames file
Upon investigation of Sticky Note Board Extension, we found that it is an extension for web browsers that is intended to boost the visibility of a fake search engine known as search.notesticky-extension.com. This is achieved by seizing control of the browser settings. Apps that operate like Sticky
Econsultingcoem[.]com is a rogue page that we discovered while inspecting dubious sites. This website promotes browser notification spam and redirects users to other (likely unreliable/dangerous) pages. Visitors to econsultingcoem[.]com and sites akin to it – access them primarily through redirec
Our researchers found the Zhong ransomware during a routine examination of new VirusTotal submissions. Ransomware is a type of malware that encrypts data for ransom purposes. On our test machine, Zhong encrypted files and appended their filenames with a ".zhong" extension. To elaborate, a file ti
While investigating dubious websites, our research team found the cosmovideo[.]cam rogue webpage. It is designed to promote browser notification spam and redirect visitors to different (likely unreliable/hazardous) sites. Most users access pages like cosmovideo[.]cam via redirects caused by websit
After inspecting the "Payment Proforma Invoice / Contract" email, we determined that it is spam. This letter operates as a phishing scam; it makes false claims regarding a received voice message to trick recipients into attempting to sign in via a fake website. This spam campaign targets email acc
Our researchers discovered the Miserium ransomware during a routine investigation of new submissions to VirusTotal. Malware within this classification operates by encrypting data and demanding payment for its decryption. After we executed a sample of Miserium on our test system, it encrypted file
After testing the SearchProvided application, our team has discovered that it exhibits aggressive and unsolicited advertisements. As a result, we have categorized SearchProvided as adware, which pertains to software specifically created to generate revenue by displaying ads. Typically, users are
BouldSpy is a spyware and data-stealer type malware that targets Android devices. It can record and extract a wide variety of information from infected systems. This malicious program has been around since at least as early as 2020. The research undertaken by Lookout Threat Lab analysts revealed