Bobik is a piece of malicious software classified as a RAT (Remote Access Trojan). These trojans are designed to enable remote access/control over infected machines. Bobik can perform various malicious activities, which include - causing chain infections, stealing data, and adding compromised devi
Our researchers found the stream-trust[.]xyz rogue page during a routine investigation of dubious websites. This webpage is designed to push browser notification spam and redirect visitors to different (likely deceptive/malicious) sites. Users typically enter stream-trust[.]xyz and similar websit
Darknes is a rogue browser extension that is promoted as a tool capable of enabling dark mode for simple design websites. Our researchers discovered this piece of software while inspecting questionable download webpages. After analyzing Darknes, we determined that it operates as adware. Ad
While inspecting dubious software-promoting webpages, our research team discovered the Baseball Start browser extension. It promises easy access to baseball news and other related content. Our analysis of this piece of software revealed that it operates as a browser hijacker. Baseball Start modifi
Bl00dy is the name of a ransomware-type program, which our researchers discovered while looking through new malware submissions to VirusTotal. This malicious program is part of the Babuk ransomware family. Once a sample of Bl00dy was executed on our testing system, it started encrypting files and
Our researchers discovered the Cash rogue application while inspecting suspicious installers. After analyzing this app, we learned that it is advertising-supported software (adware). Adware operates by enabling the placement of third-party graphical content (advertisements) on various inte
Our research team discovered the Mmdt malicious program during a routine inspection of new submissions to VirusTotal. Mmdt is classified as ransomware, and it is part of the Djvu malware family. When we launched a sample of this ransomware on our test system, it began encrypting files and appende
While inspecting rogue software installers, our researchers discovered the Weekly Hits browser extension. This extension promises to allow users to quickly access the most searched song lyrics of the week. After analyzing this piece of software, we determined that it is a browser hijacker promotin
Zanubis is a piece of malicious software classified as a banking trojan. This malware targets Android Operating Systems (OSes). The primary function of this program is to stealthily obtain online banking account credentials and gain access to the funds stored therein. Zanubis targets Latin America
While checking out suspicious webpages, our researchers found the flowerself[.]xyz rogue site. It promotes spam browser notifications and redirects users to other (likely unreliable/malicious) websites. Visitors to flowerself[.]xyz and pages akin to it - typically access them via redirects caused