RustyBuer is the name of a new variant of the Buer loader. The main difference between the new and the original variants is that one is written in Rust multi-paradigm programming language, and another one is written in C programming language. Both RustyBuer and Buer function as loaders - they infe
Hive is a ransomware-type program. It operates by encrypting data and demanding ransoms for the decryption. In other words, this malware renders files inaccessible and demands payment for access recovery. During the encryption process, affected files are renamed following this pattern: original f
ThePDFConverterSearch is a potentially unwanted application (PUA), a browser hijacker designed to change a browser's settings to thepdfconvertersearch.com (to promote a fake search engine). It is worth mentioning that this application can read browsing history and possibly other browsing-related o
MacRunnerDaemon, or simply MacRunner, is a rogue piece of software belonging to the Pirrit adware family. It operates by running intrusive advertisement campaigns, i.e., delivering various ads. Additionally, adware usually has data tracking abilities, which are used to collect sensitive informat
There are many deceptive websites designed to look like official Microsoft (or other company's) pages and display fake virus and (or) error notifications with telephone numbers. Websites of this type are called technical support scams. Scammers behind these pages attempt to trick users into paying
Belonging to the Djvu ransomware family, Miis is a malicious program designed to encrypt data and demand ransoms for the decryption tools. In other words, victims cannot access the files affected by Miis ransomware, and they are asked to pay - to restore access to their data. During the encryptio
Leex ransomware variant belongs to the Djvu ransomware family. It encrypts files, appends its extension (".leex") to their filenames and creates the "_readme.txt" file as its ransom note. Leex renames encrypted files in this manner: it renames a file named "1.jpg" to "1.jpg.leex", "2.jpg" to "2.jp
NetworkSync is a rogue app. It is classified as adware and has browser hijacker qualities. Following successful installation, this piece of software runs intrusive advertisement campaigns and promotes fake search engines by making modifications to browser settings. Additionally, adware and brow
It is popular among cybercriminals to distribute malware by hiding it inside cracked software. It is known that Crackonosh is distributed alongside cracked popular games and other software. The main purpose of Crackonosh is to install the XMRIG miner and mine cryptocurrencies for the attackers.
Neer is a piece of malicious software belonging to the Djvu ransomware family. Systems infected with this malware experience data encryption (files are rendered inaccessible) and receive ransom demands for the decryption (access recovery). During the encryption process, affected files are appende