Cooper is ransomware designed to block access to files by encrypting them. Additionally, Cooper appends its extension (".Cooper") to filenames of all encrypted files and creates a text file named "Cooper_Recover.txt" which contains a ransom note. An example of how Cooper renames files: it changes
While testing the TypicalAnalog application, our team discovered that it displays intrusive ads. As a result, we have classified TypicalAnalog as adware. Adware is typically distributed through dubious methods, often resulting in unintended downloads and installations by users. TypicalAn
Our team has inspected powerpcfact[.]com and found that this page runs the "McAfee - Your PC is infected with 5 viruses!" scam. Also, powerpcfact[.]com asks for permission to display notifications. We discovered powerpcfact[.]com while examining other shady pages and ads on them. The websi
After testing the AdvancedSkill application, our team has determined that it functions as adware. Once installed, the app exhibits unwanted advertisements and it may be capable of accessing sensitive information. It is worth noting that many users may unintentionally download and install adware
Boza is ransomware that belongs to the Djvu family. It encrypts files and adds the ".boza" extension to the original filenames. Also, it creates a ransom note named "_readme.txt". Our experts discovered Boza during the evaluation of malware samples submitted to VirusTotal. An example of how Boza
Our team has examined this email and discovered that it is a fraudulent message instructing its recipients to verify their credentials. The email includes an attachment that leads to a fake login page. The scam's objective is to deceive the recipients into divulging their login information on a mi
Our team recently discovered a variant of the Djvu ransomware family called Kiop, which is file-encrypting malware. We came across Kiop while examining samples on the VirusTotal website. It is important to note that Kiop may be distributed alongside information stealers like RedLine or Vidar. Kio
VapeV7 is ransomware that we discovered while inspecting malware samples submitted to the VirusTotal website. The purpose of VapeV7 is to prevent victims from using/accessing their data by encrypting it. Also, VapeV7 appends the ".VapeV7" extension to filenames and displays a ransom note in a pop-
Our researchers discovered the CapitalProjectSearch app while examining new submissions to VirusTotal. Upon scrutinizing the software, we established that it is adware. Its function involves displaying ads and may also include other harmful capabilities. Advertising-supported software, o
While investigating this email, we learned that it is a phishing letter disguised as a warning from an email service provider. The purpose of this scam email is to deceive recipients into opening a fake website and providing personal information on it. Thus, recipients should ignore this letter.