Zaps belongs to a family of ransomware called Djvu. This ransomware encrypts files and appends its extension (".zaps") to their filenames. For example, it renames "1.jpg" to "1.jpg.zaps", "sample.jpg" to "sample.jpg.zaps", and so on. It also creates a ransom note (the "_readme.txt" file) containin
Music-home[.]info is an untrustworthy page that promotes other pages of this kind and uses a clickbait technique to trick visitors into agreeing to receive its notifications. There are hundreds of pages similar to music-home[.]info. Some examples are mateyhecrie[.]xyz, current-captcha[.]top, and c
Mateyhecrie[.]xyz loads deceptive content to trick visitors into allowing it to show notifications and opens questionable websites. It serves the same purpose as ngecauuksehi[.]xyz, current-captcha[.]top, jollycrowds[.]com, and plenty of other pages. Users open these pages inadvertently. M
Piton is a new variant of the Babuk ransomware. It operates by encrypting data (locking files) and demanding payment for the decryption. During the encryption process, files are appended with a ".piton" extension. For example, a file originally titled "1.jpg" would appear as "1.jpg.piton", "2.jpg
Hdvideosnet[.]com is a rogue website designed to load dubious content and/or redirect visitors to other (likely untrustworthy or malicious) pages. There are countless sites of this type online; hisqueost.xyz, theresults.net, and liffsandupa.xyz are but a few examples. Users typically access rogue
Maql is a type of malware that encrypts files, appends the ".maql" extension to the filename of each encrypted file, and creates the "_readme.txt" file (a ransom note). It renames a file named "1.jpg" to "1.jpg.maql", "2.jpg" to "2.jpg.maql", and so on. Maql is part of the Djvu ransomware family.
Ngecauuksehi[.]xyz is a rogue website sharing common traits with current-captcha.top, fugles.net, get-positive.net, captchamodern.top and many others. It is designed to load dubious material and/or redirect visitors to different (likely untrustworthy or malicious) pages. Most users unintentionall
Current-captcha[.]top is a rogue website designed to load questionable content, push its browser notifications, and/or redirect visitors to various (likely unreliable or malicious) pages. There are thousands of such webpages on the Internet; clevercaptcha.top, positivestar.org, and news-hoyisa.cc
Similar to fugles.net, news-lipaze.cc, premium-shops-around.me, and thousands of others, clevercaptcha[.]top is a rogue site. It operates by presenting visitors with dubious material and/or redirecting them to various (likely unreliable or malicious) websites. Most users enter such pages via redi
Squirrelwaffle is a piece of malicious software designed to cause chain infections, i.e., download/install additional malware. At the time of research, Squirrelwaffle was used to infect systems with Cobalt Strike malicious program. The latter is infamous for being used to inject devices with ranso