Cylance is the name of malicious software that operates as ransomware. Its purpose is to encrypt files (to prevent victims from accessing their data). Additionally, Cylance appends the ".Cylance" extension to filenames and creates the "CYLANCE_README.txt" file (a ransom note). Cylance targets Win
During our analysis, we identified Jycx as ransomware that employs file encryption and modifies the file names by appending the ".jycx" extension. Furthermore, it generates a ransom note, the "_readme.txt" file. Our team came across Jycx while examining various malware samples submitted to the Vir
D7k is ransomware designed to encrypt data on infected devices and append the ".D7k" extension to the filenames of all encrypted files. Additionally, D7k creates a text file named "note.txt". This file contains a ransom note. An example of how D7k renames files: it changes "1.jpg" to "1.jpg.D7k",
During our testing of PhasePure, we observed that it displays intrusive ads, leading us to categorize it as adware. Moreover, PhasePure has the capability to access sensitive information. It is noteworthy that users seldom intentionally download and install adware. Ads displayed by adwar
OpcJacker is the name of malware capable of logging keystrokes, capturing screenshots, stealing sensitive information from web browsers, loading supplementary modules, and substituting cryptocurrency addresses in the system's clipboard. OpcJacker disguises itself as legitimate software, such as cr
After examining the letter, we have determined that it is a deceptive email designed by scammers to deceive recipients into divulging sensitive information. The email is disguised as a message from an HR department and contains a link to a phishing website. It is recommended that recipients disreg
Money Message is ransomware that encrypts files and creates a ransom note ("money_message.log" file). Unlike most ransomware variants, Money Message does not rename files (it does not append its extension to filenames). Cybercriminals use Money Message to extort money from victims. Screenshot
Rn is ransomware that uses encryption to prevent victims from accessing their files. In addition to encrypting files, Rn appends the ".rn" extension to filenames and changes the desktop wallpaper to a ransom note. An example of how Rn modifies filenames: it renames "1.jpg" to "1.jpg.rn", "2.png" t
After downloading and installing ArchiveTask, our team found that its primary purpose is to display annoying advertisements, which prompted us to categorize it as adware. It is worth noting that users often unknowingly download and install adware, without realizing what this software does.
The purpose of grakorte[.]com is to trick visitors into agreeing to receive notifications from it. Additionally, grakorte[.]com may redirect visitors to other untrustworthy pages. Our team discovered grakorte[.]com while inspecting web pages that utilize rogue advertising networks. Grakort