Our team analyzed the morcun[.]click and found that it runs the "McAfee - Your PC is infected with 5 viruses!" scam. We discovered this page while inspecting other pages that use rogue advertising networks. We also found that morcun[.]click wants to show notifications. This page cannot be trusted.
Multiple Account is the name of a rogue browser extension promoted as a tool that can save and import Internet cookies from other accounts. After analyzing this piece of software, we determined that it operates as adware. Adware stands for advertising-supported software. It is designed to
Rs-jon is ransomware that makes files inaccessible by encrypting them. Also, it appends the ".rjson" extension to the filenames of the encrypted files, changes the desktop wallpaper, and drops the "READ_ME_PLZ.txt" file containing a short ransom note. Our malware researchers discovered Rs-jon whil
Our researchers discovered yourhypejournal[.]com rogue webpage during a routine inspection of untrustworthy sites. This page is designed to trick visitors into allowing it to deliver browser notification spam. Most users enter webpages like yourhypejournal[.]com through redirects caused by website
Our researchers discovered the TabsMode browser extension while investigating untrustworthy websites. After analyzing this rogue extension, we determined that it operates as a browser hijacker. TabsMode makes changes to browser settings in order to cause redirects to the tabsmode.xyz fake search e
After testing the quick do app, we found that it is a browser extension that changes the settings of a web browser to promote a fake search engine (quicknewtab.com). Moreover, this app does not allow users to undo its changes while it is added to a browser. Apps designed to promote fake search eng
Getf**ked is the name of a ransomware-type program; throughout this article, the censoring asterisks will stand for the letters "u" and "c" respectively. We discovered this malware while inspecting new submissions to VirusTotal. When we launched a sample of this ransomware on our test system, and
Ash is the name of ransomware that encrypts files, modifies filenames of all encrypted files, and drops two files ("Decryptor.hta" and "ReadMe_Decryptor.txt") that contain ransom notes. Ash is part of the Dcrtr ransomware family. Our team discovered this ransomware variant while examining malware
Our researchers discovered the Flash ransomware-type program while checking out new submissions to VirusTotal. This piece of software belongs to the Dcrtr ransomware family. After we executed a sample of Flash on our test machine, it began encrypting files and changed their filenames. Original ti
Omerta is ransomware belonging to the Scarab family. The purpose of ransomware is to encrypt files. We discovered Omerta while inspecting malware samples submitted to VirusTotal. In addition to encrypting data, Omerta replaces filenames with a string of random characters with the ".omerta" as the