Foo belongs to the VoidCrypt ransomware family. This ransomware encrypts files and appends the encryptfull@criptext.com email address, victim's ID, and the ".Foo" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.[encryptfull@criptext.com][ZRC71WE2QGBLYX5].Foo", "2.jpg" to "2.jpg.
ProductUpgrade is a rogue application classified as adware with browser hijacker traits. Following successful infiltration, this app runs intrusive advertisement campaigns and modifies browsers to promote fake search engines. Due to the dubious methods employed to proliferate ProductUpgrade, it
OpticalPartition displays advertisements and promotes a fake search engine. In this way, the app functions as adware and a browser hijacker. It is also likely that this app gathers browsing-related (and other) data. People commonly download and install apps such as OpticalPartition inadvertentl
AXI is malicious software, which belongs to the Dharma ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, affected files are renamed following this pattern: original filename, unique ID, c
Best File Converter's developers advertise this app as a tool that quickly converts PDF files, images, and audio files, however, it actually generates advertisements and is thus classified as adware. Additionally, this app can read and change all data on websites that users visit. In most cases,
"Payment Schedule email virus" refers to a malware-spreading spam campaign. The term "spam campaign" defines a mass-scale operation, during which thousands of deceptive/scam emails are sent. The messages distributed through this campaign are presented as notifications concerning a payment schedule
DoNotWorry is designed to encrypt files and modify filenames by prepending the elixuwaril@gmail.com email address, victim's ID, and appending the ".DoNotWorry" extension to them. For example, "1.jpg" is renamed to "[elixuwaril@gmail.com][id=C279F237]1.jpg.DoNotWorry", "2.jpg" to "[elixuwaril@gmail
BIOSAgentPlus is advertised as software that checks for BIOS updates, outdated drivers, and recommends updates. It also provides detailed information regarding currently installed BIOS and drivers. There is a possibility that this application is distributed using the 'bundling' method. Apps that
Today, COVID-19 is commonly used as the subject for various scams, including email phishing scams. Typically, cyber criminals behind them attempt to trick recipients into providing private, sensitive information. For example, social security numbers, credit card details, bank account numbers, and
DominantPartition is an adware-type app with browser hijacker characteristics. This application operates by running intrusive advertisement campaigns and making changes to browser settings to promote fake search engines. Additionally, most adware-type apps and browser hijackers collect browsing-