Horse is a malicious program belonging to the Phobos ransomware family. This malware operates by encrypting data and demanding ransoms for decryption. During the encryption process, all compromised files are renamed according to this pattern: original filename, unique ID, cyber criminals' ICQ mess
ExploreDivision is an adware-type application with browser hijacker traits. It operates by running intrusive advertisement campaigns, making modifications to browser settings and promoting fake search engines. ExploreDivision promotes z6airr.com on Safari browsers and search.adjustablesample.com
OnlineToolSearch is classified as adware, however, it also functions as a browser hijacker: it feeds users with advertisements and promotes the address of a fake search engine by changing browser settings. OnlineToolSearch and similar apps collect information relating to users' browsing habits a
Trafc Tab is a browser hijacker. Software categorized as such typically operates by making modifications to browser settings to promote fake search engines, however, the behavior of Trafc Tab is decided by users' geolocations. I.e., this browser hijacker does not necessarily modify browser setting
Eleanor is malware targeting Mac users. It allows cyber criminals to control infected computers remotely and perform various actions. Research shows that Eleanor is distributed via a deceptive installer associated with the EasyDoc Converter application. Users who execute this installer allow it
luckypushwinner[.]com is one of many rogue websites designed to promote other such sites or load dubious content (tiktok-fun[.]com, allfreshposts[.]com and hipermovies[.]icu are other examples of similar rogue sites). Generally, users do not visit these web pages intentionally - they are opened by
The BipApp browser hijacker promotes a fake search engine (toksearches.xyz). Like most apps of this type, BipApp promotes a bogus site, however, in this case, the browser hijacker does not directly assign settings to toksearches.xyz (see below). Additionally, this app collects browsing-related inf
KryptoCibule is malware written in the C# programming language and capable of operating as a cryptocurrency miner, clipboard hijacker and file exfiltration tool. It uses victims' computer hardware (resources) to mine cryptocurrency, can replace wallet addresses in the system clipboard, and exfiltr
press-allow-browser2[.]com is a rogue website sharing many similarities with tiktok-fun.com, allfreshposts.com, hipermovies.icu and thousands of others. Once accessed, this site presents visitors with dubious content and/or redirects them to other untrusted or possibly malicious web pages. Users
Puppyness Search is rogue software categorized as a browser hijacker. It is endorsed as a tool for easy access to domestic canine-related content, however, following successful installation, Puppyness Search makes alterations to browser settings to promote puppyness.club (a fake search engine). P