During our analysis of malware samples submitted to VirusTotal, our team discovered Vatq ransomware, which is a member of the Djvu ransomware family. Once a computer is infected, Vatq encrypts files and modifies their filenames by appending the ".vatq" extension. For example, it renames "1.jpg" to
Our team came across knuckledzone[.]com during our investigation of web pages utilizing dubious advertising networks, and we have identified it as an untrustworthy website employing a clickbait strategy to trick visitors into subscribing to its notifications. It is important to mention that the ma
Our research team discovered the Mountains Tab browser extension while inspecting suspicious sites. This rogue extension modified browser settings on our test machine and caused redirects to the mountainstab.com fake search engine. This behavior falls within the domain of browser hijackers.
While investigating new submissions to the VirusTotal website, our research team found the FAST ransomware. Malicious programs within this classification are designed to encrypt data and demand ransoms for its decryption. On our test machine, FAST encrypted files and altered their filenames. Orig
During our investigation of suspicious advertising networks, our team came across sadrettinnow[.]com This website is specifically designed to deceive users into subscribing to its notifications and can redirect visitors to similar pages. It is uncommon for users to visit such pages intentionally.
During our investigation of the Fast Cars Tab extension, we discovered that it seizes control of web browsers by making changes to their settings. The primary objective of this browser-hijacking extension is to endorse a deceptive search engine known as fastcarstab.com. Furthermore, there is a pos
Browser Cleaner Pro is marketed as a powerful tool designed to effectively clean browsing data and cookies. However, while testing this browser extension, our team noticed that it delivers intrusive advertisements. For this reason, we classified Browser Cleaner Pro as adware (advertising-supported
During our analysis of malware samples on VirusTotal, we came across a member of the Djvu ransomware family dubbed Vaze. This particular ransomware encrypts files and modifies their original filenames by appending the ".vaze" extension. It also leaves a ransom note, a text file named "_readme.txt"
Vapo is ransomware belonging to the Djvu family that encrypts files on the victim's computer and requests a ransom payment in exchange for decryption tools. Our team discovered Vapo during an assessment of newly submitted malware samples on VirusTotal. It is worth noting that Vapo may be distribut
While investigating untrustworthy websites, our research team discovered the Play Audio browser extension. It is promoted as a tool that enables users to listen to any audio format on the Web. After analyzing this piece of software, we determined that it is adware. Play Audio runs intrusive adver