Rooe belongs to the Djvu ransomware family. Like many other programs of this type, Rooe ransomware encrypts files, renames them by appending an extension and creates a ransom message. It renames all files by appending the ".rooe" extension. For example, "1.jpg" becomes "1.jpg.rooe", and so on. It
GrandSteal is malicious software, which primarily operates by exfiltrating (i.e., stealing) information stored on infected devices. It has been observed proliferating through spam campaigns, targeting German and Austrian organizations, and spreading via infectious file attachments disguised as cur
ContentBenefits is a potentially unwanted application (PUA) categorized as adware. It supposedly enhances the browsing experience and delivers other value and features. In fact, ContentBenefits serves intrusive advertisements and collects browsing data. Generally, people download and install adw
ThreadProperty supposedly improves the browsing experience, however, it displays intrusive advertisements and gathers various information. Programs of this type are categorized as potentially unwanted applications (PUAs) and adware. Generally, people download and install adware inadvertently.
Grandoreiro is the name of malicious software, a banking Trojan written in the Delphi programming language. It targets users in Brazil, Mexico, Spain and Peru. Cyber criminals attempt to infect computers with software of this type to generate revenue by misusing information stolen by programs such
Discovered by Germán Fernández, CXK NMSL is a malicious program classified as ransomware. One method used to distribute this malware is via Corona virus-themed email spam campaigns. Additionally, the malicious executable of CXK NMSL (which initiates the infection) can be similarly disguised (e.g.
Polleryou (also known as Rentyr) was discovered by S!Ri. This ransomware encrypts victims' files, however, unlike most programs of this type it does not append any extension to filenames. Polleryou changes the desktop wallpaper and creates a ransom message within a text file named "Read-me22.txt".
mp3converter[.]to allows visitors to download YouTube videos converted to MP3 and MP4 formats, however, this page uses rogue advertising networks and redirects users of its video conversion service to other untrusted websites. Do not use the services of these websites. Furthermore, it is illegal t
Encrypted Search is a browser hijacker, advertised as a web searching tool with reinforced privacy measures. It is supposedly capable of encrypting search queries, traces of which it deletes after thirty minutes of inactivity. This hijacking application modifies browsers and promotes its fake sear
Similar to AnteFrigus, Prometey is malicious software classified as ransomware. It operates by encrypting data and demanding payment for decryption. During the encryption process, all affected files are appended with an extension, consisting of a random character string. For example, a filename s