Step-by-Step Malware Removal Instructions

ClickDark Adware
Adware

ClickDark Adware

After testing the ClickDark application, our team learned that it shows annoying advertisements. Therefore, we classified ClickDark as adware. We discovered this app while examining deceptive websites offering/instructing us to download supposedly useful (or required) browser extensions. C

Scam Ransomware
Ransomware

Scam Ransomware

While inspecting new submissions to VirusTotal, our research team discovered a ransomware-type program called Scam. It is yet another one based on the Chaos ransomware. On our test machine, the Scam ransomware encrypted files and appended their filenames with a ".scam" extension. For example, a f

QueueBuffer Adware (Mac)
Mac Virus

QueueBuffer Adware (Mac)

QueueBuffer is a piece of rogue software that our researchers discovered while inspecting new submissions to VirusTotal. Analyzing this app revealed that it operates as adware. Additionally, QueueBuffer belongs to the AdLoad malware family. Adware is designed to enable the placement of t

FirstKill Ransomware
Ransomware

FirstKill Ransomware

While examining malware samples submitted to the VirusTotal, our team discovered FirstKill - ransomware that encrypts files. It is used to blackmail victims by demanding to pay for a decryption tool. FirstKill not only encrypts but also renames files (appends the ".FirstKill" extension), changes t

DHL e-Shipping Invoice Email Scam
Phishing/Scam

DHL e-Shipping Invoice Email Scam

After inspecting the "DHL e-Shipping Invoice" email, we determined that it is spam. This email spam campaign operates as a phishing scam. These letters claim to contain an invoice regarding a shipment, which recipients can view and inquire about by logging in with their email accounts. However, by

I Paid For Products From Your Store Email Virus
Phishing/Scam

I Paid For Products From Your Store Email Virus

After inspecting this letter, our team concluded that its purpose is to trick recipients into infecting their computers with malware. We found that this email is disguised as a letter regarding a money refund and contains an attachment designed to download a file containing another (malicious) fil

Demon (Babuk) Ransomware
Ransomware

Demon (Babuk) Ransomware

Demon is a type of malware (ransomware) that encrypts files. We discovered it while examining malware samples submitted to the VirusTotal site. Threat actors behind it demand payment in return for decryption tools. Additionally, Demon ransomware appends ".demon" extension to filenames and creates

ProgressBoost Adware (Mac)
Mac Virus

ProgressBoost Adware (Mac)

While inspecting new submissions to VirusTotal, our researchers found the ProgressBoost application. The analysis of this software revealed that it operates as adware and belongs to the AdLoad malware family. Adware is designed to display adverts on visited websites and/or other interfac

ProgramOpen Adware (Mac)
Mac Virus

ProgramOpen Adware (Mac)

ProgramOpen is a rogue application that our research team discovered while investigating new submissions to VirusTotal. After analyzing this piece of software, we learned that ProgramOpen is adware. Additionally, this app is part of the AdLoad malware family. Adware stands for advertisin

ModernLoader Malware
Trojan

ModernLoader Malware

ModernLoader, also known as Avatar Bot and AvatarLoader, is a malicious program that has minimalistic loader and RAT (Remote Access Trojan) functionalities. Loader-type malware is designed to infect devices with additional malicious programs, while RATs enable remote access/control over infected