Generally, malspam campaigns are used to trick recipients into opening a malicious attachment or a file downloaded via a malicious website. The file then infects computers with malware. In this particular case, cyber criminals send emails with an attached ".7z" archive file, which contains a malic
readnewmessage[.]com is a rogue website. There are thousands of similar sites online, including, for example, wapwon-k.uno, allwownewz.com, and urgent-incoming.email. Visitors to readnewmessage[.]com are presented with dubious content and/or are redirected to other untrusted or possibly malicious
This ransomware is named 'Microsoft', however, the actual Microsoft company has nothing to do with this piece of malware, which belongs to the Xorist ransomware family. Like most malware of this type, 'Microsoft' renames files and creates a ransom message. It renames files by appending the ".Micr
DogeCrypt is a new variant of DesuCrypt ransomware. This malware operates by encrypting files and renaming them for the purpose of demanding payment for decryption. During the encryption process, all affected files are renamed following this pattern: original filename, cyber criminals' email addre
NEWRAR is a malicious program belonging to the Matrix ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools. This ransomware operates by encrypting files and renaming them following this pattern: "[newrar@tuta.io].[r
uptoabc[.]com is designed to promote (open) dubious websites, and it can also load dubious content itself. More examples of pages similar to uptoabc[.]com are you-just-won-prize[.]com, urgent-incoming[.]email and withoughzp[.]club. Usually, these sites are opened via untrusted, deceptive adverti
This Online Virus Scanner website cannot be trusted - it is designed by scammers who attempt to deceive unsuspecting visitors into providing their email login credentials. It has logos of reputable, well-known antivirus programs at the bottom of the page, however, none have anything to do with thi
SmartFunctionSearch is a rogue app classified as adware. It also has browser hijacker characteristics. Following successful installation, this application runs intrusive advertisement campaigns, makes changes to browser settings and promotes fake search engines. Most adware-type apps and browse
InitialWindow is designed to change certain browser settings to z6airr.com or adjustablesample.com (to promote fake search engines), serve advertisements and gather sensitive information. This app is classified as adware and a browser hijacker. Most users download and install these apps uninten
TEREN belongs to the family of ransomware called Dharma. This malware encrypts files and changes their filenames, displays a ransom message in a pop-up window and creates the "FILES ENCRYPTED.txt" text file (another ransom message). It renames files by adding the victim's ID, databack44@tuta.io e