Axegrinder[.]top is the address of a rogue page. It operates by promoting browser notification spam and redirecting visitors to other (likely dubious/malicious) sites. Users primarily access pages of this kind through redirects caused by websites employing rogue advertising networks. Our research
During our examination of Flexi Search New Tab, we found that this extension functions as a browser hijacker. We learned that the purpose of Flexi Search New Tab is to promote searchflexi.com, which is a fake search engine. Flexi Search New Tab promotes searchflexi.com by taking control over a web
DesignationDrive is an adware-type application that our research team discovered while investigating new submissions to the VirusTotal website. This app is part of the AdLoad malware family. DesignationDrive is designed to feed users with unwanted/deceptive advertisements. Adware stands
Upon examination of mycaptchaspace[.]top, our team has determined that its purpose is to deceive visitors into granting permission for notification delivery. Mycaptchaspace[.]top utilizes deceptive content to obtain this permission. Our team came across mycaptchaspace[.]top while investigating dub
While inspecting malware samples submitted to VirusTotal, our team discovered DEADbyDAWN - ransomware designed to encrypt files. Also, DEADbyDAWN alters file names by replacing them with a random string of characters and appending its unique extension. It is important to note that different sample
Raasv2 is ransomware that our team discovered while examining samples submitted to VirusTotal. Our analysis revealed that Raasv2 encrypts files, renames all encrypted files, and creates the "#FILES-ENCRYPTED.txt" file (a ransom note). It prepends the decryption.helper@aol.com email address and the
Upon examination of the DisplayFraction application, our team has concluded that it displays characteristics of adware, categorizing it as such. Adware typically relies on questionable tactics for promotion and distribution. Our discovery of DisplayFraction occurred while investigating misleadin
Our researchers found the Mitu ransomware during a routine inspection of new submissions to the VirusTotal site. This program is part of the Djvu ransomware family. It is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Mitu on our testing system, it e
Miza is a ransomware-type program that our researchers discovered during a routine inspection of new submissions to VirusTotal. This program is part of the Djvu ransomware family. Malware within the ransomware classification encrypts data and demands payment for its decryption. After we executed
Our researchers discovered the Miqe ransomware during a routine inspection of new submissions to the VirusTotal website. This malicious program is part of the Djvu ransomware family. On our test machine, Miqe encrypted files and appended their filenames with a ".miqe" extension. For example, a fi