While inspecting websites offering "cracked" software to download, our research team discovered the Tool browser extension. After analyzing this rogue browser extension, we learned that it operates as adware. Tool causes redirects (force-opens websites) and may run intrusive advertisement campaign
It is a pop-up scam (a fake Windows warning) claiming that the operating system is damaged. Scammers use it to trick website visitors into downloading deceptive (potentially malicious) applications. We discovered this site while inspecting other pages that use rogue advertising networks. Typically
Hydrox is ransomware that our team has discovered while analyzing malware samples submitted to VirusTotal. It encrypts files, appends the ".hydrox" extension to filenames, drops the "Hydrox Ransomware.txt" file (a ransom note), and changes the desktop wallpaper. An example of how Hydrox ransomwar
Our research team discovered the RelianceTask rogue application while inspecting new submissions to VirusTotal. Our analysis of this app revealed that it operates as advertising-supporting software (adware). Furthermore, RelianceTask is part of the AdLoad malware family. Advertising-supp
DailyPanel is an application that shows unwanted advertisements. It is an advertising-supported app (adware). Our team discovered DailyPanel while examining websites claiming that the Adobe Flash Player is out of date. DailyPanel is distributed via a fake installer. Advertisements displa
DawDropper is a piece of malicious software targeting Android operating systems. It is classified as a dropper - a type of program designed to cause chain infections (i.e., download/install other malware). This dropper has been used to infect devices with various banking trojans. DawDropper's dev
"Summon To Court For Pedophilia" refers to scam emails disguised as court summons issued by governmental bodies. These letters claim that the recipient is accused of activities relating to pedophilia. We have inspected two variants of these spam emails, one in French and the other in Lithuanian, E
While inspecting websites offering "cracked" software, our researchers discovered a rogue browser extension simply titled "Chrome". Many fake extensions may use this name; in general, it is common for dubious software to use the names and graphics of legitimate products and companies. Typically, d
During a routine investigation of suspicious websites, our researcher team found the urgentscanur[.]com rogue page. It hosts deceptive content (scams), promotes spam browser notifications, and redirects users to other (likely untrustworthy or malicious) sites. Most visitors to urgentscanur[.]com
TerminalGenerate is an application that we discovered while inspecting new submissions to VirusTotal. Our analysis of this rogue app revealed that it is adware. Furthermore, TerminalGenerate is part of the AdLoad malware family. Advertising-supported software (adware) is designed to disp