NW24 belongs to the Dharma ransomware family and was discovered by Jakub Kroustek. This ransomware encrypts files, renames them and provides victims with instructions about how to contact the developers. NW24 renames files by adding the victim's ID, newhelper24@protonmail.ch email address and appe
SearchConverters is a browser hijacker, which operates by making changes to browser settings to promote a fake search engine (search-converters.com). This software also monitors users' browsing habits. Additionally, due to the dubious techniques used to proliferate SearchConverters, it is classifi
StreamBeeSearch assigns certain browser settings to streambeesearch.com, the address of a fake search engine. Note that apps of this type often track information (collect various browsing-related data). Users often download and install browser hijackers inadvertently and, for this reason, they are
"Nico International Email Virus" refers to a spam email campaign designed to proliferate the Agent Tesla RAT (Remote Access Trojan). The term "spam campaign" is used to define a large-scale operation, during which thousands of deceptive emails are sent. The messages distributed through this spam
In most cases, cyber criminals behind malspam campaigns disguise their messages as official and important, and sent from legitimate companies and organizations. Their main goal is to trick recipients into opening a malicious file attached to the email (or that can be downloaded through a link in t
connection-protect[.]com is a deceptive website, which promotes various scams. It has been observed promoting schemes that target Apple product users, primarily mobile device users. At the time of research, the scam run on connection-protect[.]com claimed that visitors' devices may have been com
Anubis is malware classified as an information stealer. It can be purchased on a hacker forum (starting from US$100). Cyber criminals can use it to steal cryptocurrency wallets, and information such as browsing cookies and passwords saved on browsers, and credit card details. Therefore, if there
StreamBrosSearch is rogue software classified as a browser hijacker. Following successful infiltration, it makes changes to browser settings to promote streambrossearch.com (a fake search engine). Additionally, StreamBrosSearch monitors users' browsing habits. Due to the dubious tactics employed
Discovered by JAMESWT, ViluciWare is designed to encrypt files, modify their filenames and prevent victims from using the computer (operating system) by locking the screen. In this way, ViluciWare functions as ransomware and a screenlocker. Research shows that it renames encrypted files by appendi
FDFK22 belongs to the Matrix ransomware family. Like other malicious programs of this type, FDFK22 is designed to prevent victims from accessing their files by encryption. It renames all encrypted files by replacing filenames with the FridaFarko@yahoo.com email address, a string of random characte