Pwpdvl is ransomware that our team discovered while checking the VirusTotal site for recently submitted samples. Upon investigating Pwpdvl, we found that it encrypts files, appends the victim's ID and ".pwpdvl" extension to filenames, and creates a ransom note ("RESTORE_FILES_INFO.txt" file). An
Upon analyzing the RichExts application, we have determined that it is a browser extension that is designed to take over web browsers (hijack them). The application alters the browser settings to forcefully push a fake search engine (sweetrnd.net). Furthermore, RichExts possesses the capacity to a
Whilst evaluating the FractionCommand application, our team observed that it displays intrusive ads. As a result, we classified FractionCommand as adware. Adware is typically distributed via questionable methods, which can result in inadvertent downloads and installations by users. Fract
We have examined the Cosmica application and discovered that it operates as a browser hijacker. Once added, Cosmica changes some of the settings of a web browser to search.cosmica-tab.com - a fake search engine. Neither Cosmica nor search.cosmica-tab.com is trustworthy. Once added to a web
Upon investigating this website, we found that it is a scam. The purpose of this site is to trick visitors into believing that they must download and install a critical security update. Downloading files from such pages can lead to unwanted installations and computer infections. Thus, it is strong
Upon our investigation, it has been determined that UnitinItiator displays invasive advertisements, leading us to categorize it as adware. Furthermore, UnitinItiator has the potential to access sensitive data. It should be noted that adware is seldom intentionally downloaded and installed by use
While analyzing malware samples submitted to VirusTotal, we stumbled upon Boty, a type of ransomware from the Djvu family. This ransomware encrypts files and alters their original filenames by adding the ".boty" extension. In addition, it creates a ransom note in the form of a text file named "_re
Kadavro Vector is ransomware that our team discovered while examining malware samples submitted to the VirusTotal page. The purpose of ransomware is to encrypt the victim's data. In addition to blocking access to files, Kadavro Vector appends the ".vector_" extension to filenames and displays a ra
Upon investigating the Life Hacks browser extension, we discovered that it hijacks web browsers by altering their settings. This browser-hijacking application is designed to force users to use a fake search engine (search.lifehacks-tab.com). Moreover, Sports Engine has the ability to access and re
While testing the ConsoleAccess application, our team discovered that it exhibits an undesirable behavior of displaying intrusive advertisements. As a result, we have classified ConsoleAccess as adware, a type of software that generates revenue by showing ads. Typically, users are unaware of ins