NIGGERWARE is was discovered by xiaopao. In most cases, ransomware encrypts files, renames them, and generates ransom messages. NIGGERWARE has this behavior, however, it does not modify the names of encrypted files. It provides instructions about how to contact the developers for payment informati
Snopy is malicious software belonging to the Xorist ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools. During the encryption process, files are appended with the ".snopy" extension. For example, a file originally
Greedyf*ckers ransomware belongs to the Xorist ransomware family. It encrypts files, modifies their filenames, changes the desktop wallpaper, creates the "HOW TO DECRYPT FILES.txt" text file, and displays a pop-up window. Greedyf*ckers renames files by appending the ".greedyf*ckers" extension. Fo
Typically, users do not download or install adware intentionally and, for this reason, MicroLookup and other adware-type apps are categorized as potentially unwanted applications (PUAs). MicroLookup is distributed via a deceptive installer designed to appear similar to the installer for Adobe Fl
Bioawards is a malicious program, which is part of the Scarab ransomware family. It is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are renamed with a random character string and appended with the ".Bioawards" extension. For example
HD Video Player software is often bundled with various untrusted and even harmful applications. The term "bundling" refers to a deceptive marketing technique of packing regular programs with unwanted or malicious additions. Due to the dubious methods used to proliferate HD Video Player, it is cla
LANDSLIDE encrypts and renames files, and creates "#ReadThis.HTA" and "#ReadThis.TXT" files, which contain instructions about how to contact the developers. LANDSLIDE renames files by prepending the nataliaburduniuc96@gmail.com email address, victim's ID, and appending the ".LANDSLIDE" extension t
Cat is a malicious program, which is part of the Xorist ransomware family. Systems infected with this program suffer data encryption and users receive ransom demands for decryption. During the encryption process, all affected files are appended with the ".cat" extension. For example, a file origi
Typically, browser hijacking apps promote fake search engines by modifying certain browser settings. SysKey promotes fxsmash.xyz in this way. It can also read browsing history, and possibly other data. Commonly, users download and install browser hijackers inadvertently and, for this reason, they
Movie Tab is a browser hijacker designed to promote tailsearch.com (a bogus search engine). Browser hijackers usually operate by making modifications to browser settings to promote fake search engines (including tailsearch.com). In fact, Movie Tab does not always modify browsers in this way (see b