ThunderX is a malicious program categorized as ransomware. It is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are appended with the ".tx_locked" extension. For example, a file originally named something like "1.jpg" would appear as "
Zphs part of the Dharma ransomware family. It encrypts files, modifies their filenames, displays a ransom message in a pop-up window, and creates the text file named "FILES ENCRYPTED.txt" (another ransom message). Zphs renames encrypted files by adding the victim's ID, zphc@cock.li email address,
SkilledSystem is designed to function as adware and a browser hijacker: it serves advertisements and promotes the address of a fake search engine by changing browser settings. It can also access and collect private, sensitive information. In most cases, users download and install apps such as S
AllConvertersSearches hijacks browsers by changing certain settings to allconverterssearches.com (the address of a fake search engine). It also collects information relating to users' browsing activities. Browser hijackers are also classified as potentially unwanted applications (PUAs), since user
"$1000 Venmo Gift Card" is a scam promoted on various deceptive websites. The scheme is presented as a gift raffle in appreciation of users' loyalty to Venmo, a mobile payment service owned by PayPal Holdings, Inc. In fact, the "$1000 Venmo Gift Card" giveaway is a blatant scam and is in no way as
Bella is a rogue program, which is used for malicious purposes. For example, to steal passwords, execute various commands, transfer malicious files, and perform other dubious actions. This malware functions as a Remote Administration Trojan (RAT), and thus cyber criminals can perform certain act
ConvertMySearch is rogue software classified as a browser hijacker. It operates by making modifications to browser settings to promote a fake search engine. ConvertMySearch promotes convertmysearch.com in this way. Additionally, this browser hijacker has data tracking capabilities, which are emplo
dheje[.]xyz is one of many deceptive websites designed to trick users into downloading and installing a potentially unwanted application (PUA). Like most pages of this type, dheje[.]xyz claims that the device is infected with viruses and encourages users to remove them with a specific applicati
Hhmgzyl is malicious software belonging to the Snatch ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, files are appended with the ".hhmgzyl" extension. For example, a file originally na
Emilisub is a part of the Xorist ransomware family. It renames all encrypted files by appending its extension. It also displays a ransom message in a pop-up window and creates the "HOW TO DECRYPT FILES.txt" file (another ransom message) in all folders that contain encrypted files. An example of h