Discovered by malware researcher S!Ri, NoCry is a ransomware-type program. It is designed to encrypt data and demand payment for decryption. When NoCry encrypts, files are renamed by appending them with the ".Cry" extension. For example, a file originally named something like "1.jpg" would appear
AnalyzerDivision is designed to display advertisements and promote a fake search engine. In this way, the app functions as adware and a browser hijacker, and it might also collect user information. Adware and other software of this kind is often downloaded and installed by users unintentionally
SpeedFixTool is advertised as a simple and powerful tool to scan, clean and optimize computers, however, this program is promoted using dubious methods. Therefore, at least some users download and install SpeedFixTool inadvertently. Programs that users download and install unintentionally are cat
Typically, ransomware is designed to encrypt and rename files (prevent access) and keep them inaccessible unless a ransom is paid. DERZKO renames files by appending the ".DERZKO" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.DERZKO", "2.jpg" to "2.jpg.DERZKO", and so on. DERZK
CoolStreamSearch is rogue software categorized as a browser hijacker. After infiltrating systems, CoolStreamSearch makes modifications to browser settings to promote coolstreamsearch.com, a fake search engine. This browser hijacker also has data tracking capabilities, which are employed to collect
Discovered by MalwareHunterTeam, Lucifer is a malicious program categorized as ransomware. This type of malware is designed to encrypt data and demand payment for decryption. Systems infected with Lucifer ransomware have their files "locked" (rendered inaccessible and useless) and users receive ra
Banking Trojans are malicious programs that, once installed on the victim's computer, create botnets, steal credentials, inject malicious code into web browsers, or steal money. Javali (also known as Ousaban) is a banking Trojan targeting users of financial institutions living in Latin America. R
Browser hijackers are potentially unwanted applications (PUAs) that change browser settings (to promote fake search engines) and gather browsing data. Searchlee promotes searchlee.com, an untrusted search engine that generates fake results with deceptive ads among them. This browser hijacker is
SocksBot is backdoor-type malware: it creates a 'backdoor' for other malicious programs to infiltrate. I.e., following successful infiltration, SocksBot can download/install additional malware. Backdoors such as SocksBot are used to infect devices with all manner of malicious software such as Tro
DriverScape is untrusted software, endorsed as a tool for identifying missing and outdated drivers, and then installing/updating them. DriverScape's website claims to have a well-organized database, which contains various drivers from official sources. The application also claims to have various p