During a routine inspection of suspicious sites, our researchers discovered the fasterantiviruspc[.]com webpage. It promotes scams and browser notification spam. At the time of research, this page ran a scam that makes false claims about visitors' devices being potentially infected with malware. A
Our team has examined safecaretech[.]online and found that it is one of the many pages running the "McAfee - Your PC is infected with 5 viruses!" scam. Also, safecaretech[.]online asks for permission to show notifications. We have discovered safecaretech[.]online while browsing websites that use s
Find My Song is a rogue browser extension that we discovered while inspecting dubious software-promoting sites. This extension is presented as a tool that allows users to easily search for songs and lyrics. However, our analysis of Find My Song revealed that it operates as adware instead.
Supreme Adblocker is promoted as an application that blocks ads in videos and websites. However, we have tested this browser extension and found that it shows advertisements. For this reason, we classified Supreme Adblocker as adware. It is common for advertising-supported apps to be downloaded an
Our research team discovered the HentaiLocker malicious program while checking out new submissions to VirusTotal. This software is classified as ransomware. It operates by encrypting data and demanding payment for the decryption. On our testing system, HentaiLocker encrypted files and renamed the
BLOCKY is ransomware that blocks access to files by encrypting them. It also appends the ".locked" extension to the filenames of encrypted files, changes the desktop wallpaper, and creates the "READ_IT.txt" text file that contains a ransom note. We have discovered BLOCKY ransomware while checking
Btnw is the name of ransomware that our team has discovered while analyzing malware samples submitted to VirusTotal. We found that Btnw belongs to a ransomware family called Djvu. Ransomware variants belonging to this family are often distributed alongside information stealers such as RedLine and
OperativeInfluence is a rogue app that our research team discovered while inspecting new submissions to VirusTotal. We determined that this application operates as adware and belongs to the AdLoad malware family. Adware stands for advertising-supported software. It enables the placement
While inspecting new submissions to VirusTotal, we discovered the LaserMacroKnowledge application. After analyzing this piece of software, we determined that it is adware. It is pertinent to mention that this app is part of the AdLoad malware family. Adware runs intrusive advertisement c
Masscan is a ransomware-type program designed to encrypt data and demand ransoms for the decryption keys/tools. There are three variants of this malware, referred to as "F", "G", and "R". Masscan appends the encrypted files with an extension differing by a letter between the ransomware versions,