Kekpop is ransomware that encrypts files (and renames them) and demands payment for file decryption. It creates the "ReadMe.html" file that contains payment information. Kekpop renames files by appending the ".kekpop" extension to filenames, replacing the original name with a string of random char
PlusTarget is an advertising-supported application. The purpose of this app is to display various advertisements (e.g., banners, coupons, pop-ups). We have discovered this app while inspecting deceptive websites. It is not a trustworthy app that should never be downloaded and installed.
News-nubuyo[.]cc is a deceptive page designed to trick visitors into agreeing to receive its notifications. Another issue with this site is that it redirects to other pages of this type. Our team has discovered news-nubuyo[.]cc while examining illegal movie streaming pages, torrent sites, and simi
Cool Search is an application that hijacks a web browser to promote the cool-search.com address, a fake search engine. It does that by changing certain settings. Typically, users download and install apps of this type unknowingly. We have discovered Cool Search while inspecting deceptive websites.
LockData is a malicious program based on Chaos ransomware. We found this program while inspecting new malware submissions to VirusTotal. After being launched onto our test machine, LockData began encrypting files and appending their filenames with an extension consisting of four random characters
We discovered the "Chrome is infected with Trojan:SLocker" scam while inspecting deceptive websites. This scheme claims that users' devices are infected. Typically, scams of this kind are designed to promote untrustworthy, fraudulent, and even malicious software. This scam is disguised as
We have discovered a new Binance USD (BUSD) giveaway scam while inspecting shady advertisements and websites. The purpose of this scam website is to trick visitors into believing that they can obtain Binance USD by connecting their cryptocurrency wallets via this page. This scam must be ignored.
While inspecting untrustworthy websites, our research team found the soksicme[.]com rogue page. It operates by promoting browser notification spam and redirecting visitors to other (likely dubious/malicious) sites. Users typically enter soksicme[.]com and similar websites via redirects caused by p
While inspecting questionable sites, our research team discovered spotofdating[.]top, and through it - they also found spot-ofdating[.]top. These rogue webpages are designed to host dubious content, promote browser notification spam, and redirect visitors to other (likely untrustworthy/malicious)
We have discovered the HotComplete application while examining untrustworthy websites. After downloading and installing the app, we found that it generates annoying/intrusive advertisements. For this reason, we have classified HotComplete as an advertising-supported application. Clicking