Edw is ransomware that encrypts files, appends the victim's ID, edward22w@aol.com email address, and the ".edw" extension to filenames, and generates two ransom notes (displays a pop-up window and creates a text file named "FILES ENCRYPTED.txt"). We found that Edw belongs to a ransomware family ca
FARGO is a new variant of the TargetCompany ransomware. Malware of this type is designed to encrypt data and demand ransoms for the decryption. After we launched a sample on our test system, we learned that this ransomware encrypts files and appends their filenames with a ".FARGO" extension. For
While inspecting new submissions to VirusTotal, our researchers discovered the CladRumble application. After analyzing this piece of software, we determined that CladRumble operates as adware and belongs to the AdLoad malware family. Advertising-supported software may require specific co
Our inspection of the "Booking Offer" email revealed that it is spam designed to spread malware. This letter claims to contain the specifications for a room booking. When the attached file is opened, it triggers FormBook malware's infection chain. The email with the subject "Booking for 8
Newware is yet another malicious program belonging to the MedusaLocker ransomware family, which our researchers discovered while inspecting new submissions to VirusTotal. Once we launched a sample of Newware ransomware on our test machine, it encrypted files and appended their filenames with the
SkyWard is a rogue app that our researchers discovered while inspecting new submissions to VirusTotal. After analyzing this piece of software, we learned that it operates as adware and belongs to the AdLoad malware family. Adware may require certain conditions to run intrusive advertisem
Non is the name of a ransomware-type program that our research team discovered while looking through new submissions to VirusTotal. We determined that this piece of malicious software is part of the Phobos ransomware family. After executing a sample of Non (Phobos) ransomware on our test system,
Ultimate Video Adblocker is a rogue browser extension that our research team discovered while inspecting deceptive download webpages. This piece of software is promoted as an ad-blocking tool capable of eliminating advertisements on YouTube and other popular video-hosting platforms. Instead, our
We discovered the situationalawareness[.]sbs rogue webpage while inspecting untrustworthy sites. It operates by loading scams, promoting browser notification spam, and redirecting visitors to other (likely unreliable/malicious) websites. Users typically access such pages through sites that use rog
Simple Files Downloader is a rogue browser extension promising to operate as a download management tool. Our researchers discovered it while inspecting dubious download webpages. After analyzing this extension, we determined that Simple Files Downloader is advertising-supported software (adware).