GlobeImposter (.xls) encrypts files and appends the ".xls" extension to each encrypted file's filename. For example, a file named "1.jpg" is renamed to "1.jpg.xls", "2.jpg" to "2.jpg.xls", and so on. GlobeImposter (.xls) creates the "read-me.txt" file to provide instructions on how to contact the
MapperTrack generates revenue for its developer by displaying advertisements and promoting a fake search engine. MapperTrack has the qualities of an adware-type app and a browser hijacker. It is very uncommon for apps of this type to be downloaded and installed knowingly. Therefore, they are cat
ExcitingCentral is a piece of rogue software categorized as adware. It also has browser hijacker qualities. Since most users unintentionally download/install products within these categories, they are also considered to be PUAs (Potentially Unwanted Applications). Adware delivers various
Inferno is a new variant of ransomware called Avaddon. This variant encrypts files and appends the ".avdn" extension to their filenames. For example, it renames "1.jpg" to "1.jpg.avdn", "2.jpg" to "2.jpg.avdn". To provide information regarding data decryption, Inferno creates the "210201-readme.ht
Chinadecryption2021is a ransomware-type program. It is designed to encrypt data and demand payment for the decryption. In other words, this malware renders files inaccessible and asks for payment to restore access to the data. Files are appended with ".chinadecryption2021.[victim's_ID]" extension
PathPanel is classified as adware because it delivers advertisements. PathPanel also falls into the category of browser hijackers - it changes the web browser's settings to promote a fake search engine. Most users download and install apps of this type inadvertently. Thus, PathPanel and similar
Locked ransomware belongs to a ransomware family called VoidCrypt. It encrypts files and appends the dexter.xanax@tutanota.com email address, a string of random characters, and the ".locked" extension to filenames. For example, it renames "1.jpg" to "1.jpg.[dexter.xanax@tutanota.com][MJ-LW16879534
SearchMultiplyResults generates advertisements and makes changes in the web browser's settings to promote a fake search engine. This application is distributed through a fake Adobe Flash Player installer. Thus, the chance that someone would download and install it on purpose is small. Se
Zippyshare[.]com is a file-sharing website. While this service is legitimate, the site uses rogue advertising networks. Hence, visitors to this website can be presented with misleading/harmful ads and/or get redirected to untrustworthy/malicious webpages through them. Employing advertising networ
FlawedGrace is a piece of malicious software classified as a RAT (Remote Access Trojan). Malware of this type is designed to enable remote access and control over infected devices. It is noteworthy that FlawedGrace has been actively proliferated via email spam campaigns. As mentioned in th