While checking out untrustworthy websites, our research team discovered the flintguard[.]top rogue page. It is designed to push browser notification spam and redirect users to different (likely dubious/malicious) websites. Visitors to pages like flintguard[.]top primarily access them via redirects
After inspecting the "Just Finished Sending 300 E-mails" letter, we determined that it is spam. This fake notification informs recipients that their account has been used to send a high volume of emails. The spam letter aims to trick users into providing their email account log-in credentials to a
Our team has inspected the StackMist application and learned that it is an untrustworthy app that shows intrusive advertisements and can read sensitive information. Since StackMist displays ads, it can definitely be classified as adware. We have discovered StackMist after downloading a fake inst
During a routine inspection of suspicious sites, our researchers discovered the fasterantiviruspc[.]com webpage. It promotes scams and browser notification spam. At the time of research, this page ran a scam that makes false claims about visitors' devices being potentially infected with malware. A
Our team has examined safecaretech[.]online and found that it is one of the many pages running the "McAfee - Your PC is infected with 5 viruses!" scam. Also, safecaretech[.]online asks for permission to show notifications. We have discovered safecaretech[.]online while browsing websites that use s
Find My Song is a rogue browser extension that we discovered while inspecting dubious software-promoting sites. This extension is presented as a tool that allows users to easily search for songs and lyrics. However, our analysis of Find My Song revealed that it operates as adware instead.
Supreme Adblocker is promoted as an application that blocks ads in videos and websites. However, we have tested this browser extension and found that it shows advertisements. For this reason, we classified Supreme Adblocker as adware. It is common for advertising-supported apps to be downloaded an
Our research team discovered the HentaiLocker malicious program while checking out new submissions to VirusTotal. This software is classified as ransomware. It operates by encrypting data and demanding payment for the decryption. On our testing system, HentaiLocker encrypted files and renamed the
BLOCKY is ransomware that blocks access to files by encrypting them. It also appends the ".locked" extension to the filenames of encrypted files, changes the desktop wallpaper, and creates the "READ_IT.txt" text file that contains a ransom note. We have discovered BLOCKY ransomware while checking
Btnw is the name of ransomware that our team has discovered while analyzing malware samples submitted to VirusTotal. We found that Btnw belongs to a ransomware family called Djvu. Ransomware variants belonging to this family are often distributed alongside information stealers such as RedLine and