While inspecting new submissions to VirusTotal, our researchers found the Pandora ransomware. We determined that this malicious program belongs to the TeslaRVNG ransomware family. After launching a sample of Pandora (TeslaRVNG) ransomware on our test system, it encrypted files and altered their f
Our inspection of the "Impex Delivery Services" email revealed that it is spam. These letters claim that recipients have received a large inheritance, which can be claimed by making a single payment. It must be emphasized that the information provided by these emails is false, and the companies/e
While checking out untrustworthy sites, our research team discovered the pprettierums[.]com rogue webpage. It loads scams, promotes browser notification spam, and redirects visitors to other (likely unreliable/malicious) websites. Users typically enter these pages through redirects caused by sites
Bbzz is ransomware belonging to the Djvu family. Our team discovered it while examining malware samples submitted to VirusTotal. Bbzz encrypts and renames files (by appending the ".bbzz" extension to filenames). It also creates a ransom note, a text file named "_readme.txt". An example of how Bbz
SMSFactory is the name of a malicious program that targets Android operating systems. This malware is designed to hide within infected devices and send SMSes or call premium-rate numbers. Significant activity of SMSFactory has been observed in Argentina, Brazil, France, Ukraine, USA, Russia, Turk
Advnotpro[.]com is designed to trick visitors into believing that they must confirm that they are not robots. It uses a clickbait technique to get permission to display notifications. Also, advnotpro[.]com redirects to another similar page. We have discovered advnotpro[.]com while inspecting pages
Bbyy is the name of ransomware belonging to a ransomware family called Djvu. We discovered it while analyzing malware samples submitted to the VirusTotal website. Bbyy ransomware encrypts and renames files and creates a ransom note (the "_readme.txt" file). It appends the ".bbyy" extension to file
Linda is ransomware that encrypts files and modifies filenames. Also, it creates the "!INFO.HTA" file containing a ransom note. Our team has discovered Linda ransomware while checking the VirusTotal page for recently submitted malware samples. It was found that Linda is part of the VoidCrypt ranso
Exobot (also known as Exo Android Bot) is a piece of malicious software targeting Android OSes (Operating Systems). This malware can extract a wide variety of information, and it can also create a botnet (i.e., control a group of infected devices to carry out malicious actions). It must be mentio
We have discovered this application while inspecting various deceptive pages (e.g., websites claiming that installed software is outdated). After downloading and installing DevSoftware, we noticed that it shows unwanted (intrusive) advertisements. Software that displays ads is called adware.