MoneyMonger (also known as SpyLoan) is the name of a malicious program that infiltrates systems under the guise of various apps offering quick loan services. This malware uses the Flutter framework to hide its maliciousness and avoid detection. MoneyMonger operates as spyware and data-stealing mal
Bttu is one of the Djvu ransomware variants. It encrypts data and appends the ".bttu" extension to the filenames of encrypted files. Also, Bttu ransomware creates the "_readme.txt" file to provide contact and payment information. An example of how Bttu renames files: it changes "1.jpg" to "1.jpg.b
Our researchers found the EssentialWindow app while inspecting new submissions to VirusTotal. After analyzing this piece of software, we determined that it is adware. EssentialWindow runs intrusive advertisement campaigns and collects private data. This application belongs to the AdLoad malware
We have examined this email and concluded that it is a phishing email written by scammers who promote crypt-related scam websites. Scammers behind it aim to steal cryptocurrency and (or) sensitive information. This email should be marked as spam and deleted. There are at least two variants
While checking out untrustworthy websites, our research team discovered the flintguard[.]top rogue page. It is designed to push browser notification spam and redirect users to different (likely dubious/malicious) websites. Visitors to pages like flintguard[.]top primarily access them via redirects
After inspecting the "Just Finished Sending 300 E-mails" letter, we determined that it is spam. This fake notification informs recipients that their account has been used to send a high volume of emails. The spam letter aims to trick users into providing their email account log-in credentials to a
Our team has inspected the StackMist application and learned that it is an untrustworthy app that shows intrusive advertisements and can read sensitive information. Since StackMist displays ads, it can definitely be classified as adware. We have discovered StackMist after downloading a fake inst
During a routine inspection of suspicious sites, our researchers discovered the fasterantiviruspc[.]com webpage. It promotes scams and browser notification spam. At the time of research, this page ran a scam that makes false claims about visitors' devices being potentially infected with malware. A
Our team has examined safecaretech[.]online and found that it is one of the many pages running the "McAfee - Your PC is infected with 5 viruses!" scam. Also, safecaretech[.]online asks for permission to show notifications. We have discovered safecaretech[.]online while browsing websites that use s
Find My Song is a rogue browser extension that we discovered while inspecting dubious software-promoting sites. This extension is presented as a tool that allows users to easily search for songs and lyrics. However, our analysis of Find My Song revealed that it operates as adware instead.