.lr ransomware is a malicious program belonging to the MedusaLocker ransomware family. It encrypts files, modifies their filenames and generates a ransom message. This ransomware renames files by appending ".lr" as the new extension. For example, "1.jpg" is renamed to "1.jpg.lr", "2.jpg" to "2.jpg
Zenon is malicious software classified as a 'clipper'. The primary functionality of this malware is stealing outgoing transfers from digital currency wallets. It does this by replacing the addresses of recipient cryptocurrency wallets and other e-wallets with those under possession of cyber crimin
Discovered by GrujaRS, EasyRansom is a malicious program categorized as ransomware. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. Once the malicious executable, which initiates the infection process of EasyRansom is opened, it displa
Egregor belongs to the family of ransomware called Sekhmet. It appends a string or random characters as the new extension of each encrypted file. For example, "1.jpg" is renamed to "1.jpg.JhWeA", "2.jpg" to "2.jpg.JhWeA", and so on. Egregor also creates the "RECOVER-FILES.txt" text file/ransom mes
OperativeProgram is an adware-type app with browser hijacker characteristics. Following successful installation, it delivers intrusive advertisement campaigns and makes changes to browser settings to promote fake search engines. Additionally, most adware-type apps and browser hijackers monitor u
meetclick[.]biz is a rogue website which promotes other untrusted pages or displays dubious content. Generally, users arrive at these pages through deceptive ads, other sites of this kind, or when potentially unwanted applications (PUAs) are installed on the browser and/or computer. I.e., users d
ProgressBuffer is an adware-type application with browser hijacker characteristics. Following successful installation, it runs intrusive advertisement campaigns and makes modifications to browser settings to promote fake search engines. Most adware-type apps and browser hijackers collect browsin
ControlFraction is dubious software classified as adware. It operates by running intrusive advertisement campaigns (i.e. delivering various ads), however, this application also makes modifications to browser settings to promote fake search engines - these capabilities are common to browser hijac
umobile-security[.]com is a deceptive website running a variety of scams. At the time of research, this web page promoted several scam variants, one of which was the "Your Apple iPhone is severely damaged" scheme. The website operates by making false claims (e.g. that the device is infected or t
Searchseries is rogue software classified as a browser hijacker. Following successful infiltration, it makes alterations to browser settings to promote keysearchs.com (a fake search engine). It might also redirect to other search engines, bogus and legitimate sites. Additionally, Searchseries mon