LinkRoot is the name of a rogue application that our researchers discovered while investigating new submissions to VirusTotal. After inspecting this piece of software, we learned that it operates as adware. Additionally, LinkRoot belongs to the AdLoad malware family. Adware is designed t
While testing UnitDisplay, we found that it is an advertising-supported application that shows annoying (intrusive) advertisements. In addition to displaying ads, UnitDisplay may be capable of gathering information. We discovered this app after downloading a fake installer from a deceptive websi
While inspecting new malware submissions to VirusTotal, our researchers discovered the HORNET ransomware. It is designed to encrypt data and make ransom demands for decryption. After we executed a sample of HORNET on our test machine, it began encrypting files and displayed a fake Windows OS upda
While examining advertizementtoyou[.]com, our team learned that this page is designed to lure visitors into agreeing to receive notifications. Advertizementtoyou[.]com uses a clickbait technique to obtain permission to deliver notifications. It also redirects to other websites. Advertizeme
After testing the Secure Audio Relay application, we learned that it bombards users with intrusive advertisements. Software of this type is called adware. Our team discovered Secure Audio Relay on a shady website. It is common for adware to be promoted and distributed using questionable (often dec
Our research team found the track-scanner[.]com rogue page during a routine inspection of questionable websites. It is designed to host online scams, promote browser notification spam, and redirect visitors to other (likely untrustworthy/malicious) webpages. Most users enter sites like track-scan
While inspecting new submissions to VirusTotal, our researchers found the ClutchTrend application. Our analysis revealed that this app operates as advertising-supported software (adware). Furthermore, it is pertinent to mention that ClutchTrend is part of the AdLoad malware family. Adwar
Bestshoppingresults.com is the address of a fake search engine. Websites of this kind are promoted by browser-hijacking software. It modifies browser settings in order to cause redirects to illegitimate search engines. Furthermore, browser hijackers and the sites they promote usually collect priva
DataBankasi is a piece of malicious software categorized as ransomware. It is designed to encrypt data and demand ransoms for decryption. After we executed a sample of DataBankasi on our test system, this ransomware encrypted files and appended their filenames with a ".databankasi" extension. For
Spartan Hack is the name of ransomware based on another ransomware called Chaos. We discovered it while examining malware samples submitted to the VirusTotal website. The purpose of Spartan Hack is to encrypt files (to make them inaccessible for victims). Also, Spartan Hack renames files, changes