While analyzing malware samples submitted to VirusTotal, we stumbled upon Boty, a type of ransomware from the Djvu family. This ransomware encrypts files and alters their original filenames by adding the ".boty" extension. In addition, it creates a ransom note in the form of a text file named "_re
Kadavro Vector is ransomware that our team discovered while examining malware samples submitted to the VirusTotal page. The purpose of ransomware is to encrypt the victim's data. In addition to blocking access to files, Kadavro Vector appends the ".vector_" extension to filenames and displays a ra
Upon investigating the Life Hacks browser extension, we discovered that it hijacks web browsers by altering their settings. This browser-hijacking application is designed to force users to use a fake search engine (search.lifehacks-tab.com). Moreover, Sports Engine has the ability to access and re
While testing the ConsoleAccess application, our team discovered that it exhibits an undesirable behavior of displaying intrusive advertisements. As a result, we have classified ConsoleAccess as adware, a type of software that generates revenue by showing ads. Typically, users are unaware of ins
During our inspection of slinponga[.]xyz, we learned this is a deceptive page running the "Your Windows 10 Is Infected With Viruses" scam. We also found that slinponga[.]xyz wants to send notifications. Our team discovered slinponga[.]xyz while examining other untrustworthy pages. As the i
Upon examination of GeneralBox, we found that it is an ad-supported program that displays intrusive ads. Also, GeneralBox may have the ability to access sensitive information. Adware applications are frequently promoted and distributed deceitfully, leading users to download and install them inad
Upon investigation of Sports Robot, we discovered that this browser extension takes control of a web browser by modifying specific settings to redirect to a fake search engine called sportrobot.info. It is important to keep in mind that browser hijackers are often promoted and distributed using mi
After a thorough examination, our team has determined that the email in question is a form of an investment scam. Scammers usually use these types of emails to trick individuals into sharing confidential information or making money transfers. It is recommended that recipients disregard any emails
Cooper is ransomware designed to block access to files by encrypting them. Additionally, Cooper appends its extension (".Cooper") to filenames of all encrypted files and creates a text file named "Cooper_Recover.txt" which contains a ransom note. An example of how Cooper renames files: it changes
While testing the TypicalAnalog application, our team discovered that it displays intrusive ads. As a result, we have classified TypicalAnalog as adware. Adware is typically distributed through dubious methods, often resulting in unintended downloads and installations by users. TypicalAn