Belonging to the Dharma ransomware family, OVO is data-encrypting malware. Systems infected with this ransomware have their files rendered inaccessible and users receive ransom demands for decryption. During the encryption process, all affected files are renamed following this pattern: original f
DiamondFox is highly modular malware offered as malware-as-a-service, and is for sale on various hacker forums. Therefore, cyber criminals who are willing to use DiamondFox do not necessarily require any technical knowledge to perform their attacks. Once purchased, this malware can be used to log
Identical to Searchlee, and similar to countless others, Brilliant Check is a browser hijacker. Following successful infiltration, it changes browser settings in order to promote brilliantcheck.com, a fake search engine. In addition, Brilliant Check operates as adware - it injects various advert
Browser hijackers modify browser settings without users' permission to promote fake search engines. Search Lime promotes searchlime.com, a search engine generating fake search results, which include dubious advertisements among them. It is likely that this app also gathers browsing data and othe
"Coca Cola email virus" refers to a spam campaign proliferating GuLoader malware. The term "spam campaign" defines a mass-scale operation during which thousands of scam emails are sent. The messages distributed through this campaign are disguised as Request for proposals (RFPs) from Coca Cola. No
Tangeng is a type of malware that encrypts victims' files and then demands payment to unlock (decrypt) them. I.e., it ensures that victims cannot access or use files unless the ransom is paid. Tangeng also renames encrypted files by appending the ".tangeng" extension to filenames. For example, "1
Discovered by malware researcher S!Ri, NoCry is a ransomware-type program. It is designed to encrypt data and demand payment for decryption. When NoCry encrypts, files are renamed by appending them with the ".Cry" extension. For example, a file originally named something like "1.jpg" would appear
AnalyzerDivision is designed to display advertisements and promote a fake search engine. In this way, the app functions as adware and a browser hijacker, and it might also collect user information. Adware and other software of this kind is often downloaded and installed by users unintentionally
SpeedFixTool is advertised as a simple and powerful tool to scan, clean and optimize computers, however, this program is promoted using dubious methods. Therefore, at least some users download and install SpeedFixTool inadvertently. Programs that users download and install unintentionally are cat
Typically, ransomware is designed to encrypt and rename files (prevent access) and keep them inaccessible unless a ransom is paid. DERZKO renames files by appending the ".DERZKO" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.DERZKO", "2.jpg" to "2.jpg.DERZKO", and so on. DERZK