While investigating new submissions to VirusTotal, our research team discovered the ActivityCache app. After inspecting this piece of software, we determined that it operates as adware. Additionally, we learned that this application is part of the AdLoad malware family. Adware stands for
Our inspection of the "ACCOUNT SHUT-DOWN" email revealed that it is spam. This letter states that the recipient's email account will be shut down per their request. This spam mail operates as a phishing scam and promotes a fake email sign-in page that records the passwords entered into it.
While inspecting the Never Forget Tab browser extension, we found that it is a browser hijacker designed to promote two fake search engines: find.eonenavigate.com and neverforgettab.com. This app promotes them by changing the web browser's settings. It is strongly recommended not to trust the Neve
While examining a deceptive website instructing visitors to update their Flash Player, our team came across a browser extension called Simple Ad Blocker. However, upon adding it, we discovered that it actually functions as adware. This app displays intrusive advertisements. Therefore, we advise ag
Upon examining this letter, we have determined that it is a fraudulent email composed by scammers with the intention of tricking recipients into divulging sensitive information. The email is disguised as a message from an email service provider and includes a hyperlink to a phishing website. It is
While examining malware samples submitted to VirusTotal, we discovered a ransomware variant based on Chaos ransomware dubbed SkullLocker. This ransomware encrypts files, creates the "read_it.txt" file (a ransom note), and appends the ".skull" extension to filenames. An example of how SkullLocker
Blacksnaketeam is a ransomware-type program designed to encrypt data and demand payment for its decryption. When we executed a sample of Blacksnaketeam on our test machine, it began encrypting files. The filenames of affected files were appended with a ".pay2unlock" extension. For example, a file
Our team has examined factor1right[.]com and found that this site offers to download a malicious file and asks for permission to send notifications. We discovered factor1right[.]com while inspecting pages that use shady advertising networks. Usually, users access sites like factor1right[.]com inad
During our analysis of the My Cloud Tab browser extension, our team discovered that it functions as a browser hijacker. The primary objective of this application is to promote search.mycloudtab.com, a bogus search engine. My Cloud Tab achieves browser hijacking by manipulating the browser's settin
We have examined this email and found that it is a phishing letter. Emails of this type are fraudulent emails sent by cybercriminals with the intention of tricking the recipient into revealing sensitive information such as login credentials or other personal data. In this case, the phishing email