Winxvykljw is ransomware that encrypts files to make them inaccessible/unusable. Winxvykljw is part of the Snatch ransomware family. We discovered it while analyzing malware samples submitted to VirusTotal. We also found that Winxvykljw appends its extension (".winxvykljw") to filenames and create
ValueFlip is a piece of rogue software that our researchers found while inspecting new submissions to VirusTotal. Our analysis of this app revealed that it operates as adware and is part of the AdLoad malware family. ValueFlip runs intrusive advertisement campaigns and likely collects private da
Aamv is a ransomware-type program that our researchers found while investigating new submissions to VirusTotal. It is pertinent to mention that this malicious program belongs to the Djvu ransomware family. Once launched on our testing system, Aamv began encrypting files. It appended the names of
While examining malware samples submitted to the VirusTotal page, we found ransomware called Aayu. We learned that Aayu is part of the Djvu ransomware. The purpose of ransomware is to encrypt files. In addition to encrypting files, Aayu renames them (it appends ".aayu" extension to filenames) and
Harly is a piece of malicious software targeting Android operating systems. It is a type of toll fraud malware designed to stealthily subscribe victims to various premium-rate services. Harly is proliferated under the guise of various useful and innocuous-looking applications. As mentioned
While inspecting new malware submissions to VirusTotal, our research team discovered the Aabn ransomware. This malicious program is part of the Djvu ransomware family. After we executed a sample of Aabn on our test machine, it encrypted files and altered their names. Original filenames were appen
Aawt is the name of ransomware belonging to the Djvu family that our team discovered while checking the VirusTotal page for recently submitted malware samples. It was found that Aawt not only encrypts files but also appends the ".aawt" extension to filenames and creates the "_readme.txt" file (a f
Duck is ransomware that is part of the Phobos ransomware family. Our team discovered Duck while inspecting malware samples submitted to the VirusTotal page. We found that it encrypts files, appends the victim's ID, supprecovery@torguard.tg email address, and the ".duck" extension to filenames. It
Our researchers discovered the Movie Database browser extension while investigating suspicious software-promoted websites. It is promoted as a quick-access tool to TMDB (The Move Database) - an online database for movies and TV shows. Having analyzed this extension, we determined that Movie Databa
After downloading and installing the EyeEase application, we learned that it has parameters of adware - it displays intrusive advertisements. Our team discovered EyeEase on a questionable (supposedly official) website. It is worth mentioning that most users download and install adware inadvertentl