Secure is a malicious program that belongs to the Scarab ransomware family. This malware encrypts data and demands payment for decryption. During the encryption process, all affected files are renamed with a random character string and the ".secure" extension. For example, a file originally named
Cukiesi encrypts files and appends "_cU{victim's_ID}Cukiesi" to their filenames. For example, "1.jpg" is renamed to "1.jpg_cU{zvsOEJ}Cukiesi", "2.jpg" to "2.jpg_cU{zvsOEJ}Cukiesi", and so on. Cukiesi also creates the "nooode.txt" text file in each folder that contains encrypted files. That file c
MicroClick functions as adware and a browser hijacker: it makes certain changes to browser settings and displays advertisements. This app might also gather browsing-related (and other) information. Commonly, users download and install apps such as MicroClick inadvertently and, therefore, they a
TigerMovieSearch is rogue software categorized as a browser hijacker. It operates by making modifications to browser settings to promote tigermoviesearch.com (a bogus search engine). Additionally, most browser hijackers monitor users' browsing activity - it is likely that TigerMovieSearch has thes
"Zero day security vulnerability on Zoom app" is a spam campaign that uses the sextortion scam model. The term "spam campaign" defines a mass-scale operation during which thousands of deceptive emails are sent. The messages distributed through this campaign claim that the sender has obtained highl
Malspam emails such as this one usually contain a download link or malicious attachment. The emails can be used to deliver ransomware, Trojans, crypto miners, spyware and keyloggers, and other malware. This particular malspam message is used to deliver Agent Tesla, a Remote Administration Tool (RA
ProcesserLog is a dubious application classified as adware. It also has browser hijacker traits. This app operates by running intrusive advertisement campaigns and making alterations to browser settings to promote fake search engines. Since most users download/install ProcesserLog inadvertently
Milleni5000 ransomware is designed to encrypt files and rename them by appending ".secure[milleni5000@qq.com]" as the file extension. For example, "1.jpg" is renamed to "1.jpg.secure[milleni5000@qq.com]", "2.jpg" to "2.jpg.secure[milleni5000@qq.com]", and so on. Milleni5000 also creates the "REST
Divsouth is a malicious program that is part of the MedusaLocker ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, all compromised files are appended with the ".divsouth" extension. For
Motion belongs to the Xorist ransomware family. It encrypts files and appends the ".motion" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.motion", "2.jpg" to "2.jpg.motion", and so on. Motion also creates the "HOW TO DECRYPT FILES.txt" file in all folders and displays a pop-up