Isza is ransomware (one of the ransomware variants belonging to the Djvu family) that encrypts files, appends its extension to filenames, and drops a ransom note. Isza renames files by appending the ".isza" extension and creates the "_readme.txt" file to provide contact and payment information. A
Isal is ransomware that prevents victims from accessing their data by encrypting it. Our team discovered this ransomware while checking the VirusTotal page for recently submitted malware samples. Additionally, Isal appends the ".isal" extension to filenames and drops a ransom note (the "_readme.tx
SBU is one of the ransomware variants belonging to the Dharma family. SBU encrypts data, appends its extension (".SBU") to filenames, creates the "info.txt" file, and displays a pop-up window. The text file and pop-up window contain ransom notes. An example of how SBU ransomware renames files: it
Our team has inspected marootrack[.]co and found that it displays a deceptive message to trick visitors into agreeing to receive notifications from it. Also, marootrack[.]co redirects to various scam pages. Thus, it is highly advisable not to trust marootrack[.]co or allow it to show notifications
After adding the Ads Tracker extension to a web browser, we noticed that this application displays unwanted advertisements. Our team discovered Ads Tracker on a deceptive web page. Since this app shows ads, we classified it as adware. It is uncommon for advertising-supported apps to be added or in
While inspecting toftheca[.]buzz, we found that it wants to show notifications and displays deceptive content to trick visitors into allowing it to show those notifications. Also, toftheca[.]buzz redirects to other deceptive web pages. We discovered toftheca[.]buzz while examining pages that use s
We have examined nedilarepron[.]com and found that it uses a clickbait technique to trick visitors into allowing it to send notifications. Our team discovered nedilarepron[.]com while inspecting websites that use rogue advertising networks. Nedilarepron[.]com is an untrustworthy page that should b
Our team has analyzed this email and found that it is a scam email regarding blocked emails. Scammers behind it aim to trick recipients into opening a phishing website and providing personal information on it. Emails of this type should be marked as spam and deleted. This email urges recip
DarkTortilla is a crypter that obfuscates, encrypts and manipulates malware to make it difficult for security software to detect it. Cybercriminals have been observed using DarkTortilla to deliver information stealers and remote access trojans (RATs), and targeted payloads such as Cobalt Strike an
While checking out suspicious websites, our research team found therecode247[.]com rogue page. It pushes browser notification spam and redirects users to different (likely unreliable/malicious) sites. Most visitors to webpages like therecode247[.]com access them through redirects caused by website