Discovered by dnwls0719, Cobra Locker (also known as Cobra_Locker or CobraLocker) is a malicious program classified as ransomware. Following successful infiltration, this malware encrypts data in order to demand payment for decryption tools. During the encryption process, files are appended with t
Badboy ransomware was discovered by dnwls0719. It encrypts files, displays a pop-up window and creates a text file ("ReadME-BadboyEncryption.txt"), both of which are ransom messages that contain instructions about how to contact the cyber criminals behind Badboy. This ransomware also renames encr
search.handlersection.com is a fake search engine that displays results generated by Yahoo after redirecting users to one of the addresses promoted by Safe Finder. Note that search.handlersection.com also redirects to search.anysearchmanager.com, the address of another dubious search engine. Ge
SkilledControl is a rogue application categorized as adware, which also possesses browser hijacker traits. SkilledControl operates by delivering intrusive advertisement campaigns, making modifications to browser settings, and promoting fake search engines. This app promotes Safe Finder via akama
Perfect Optimizer is advertised as software that supposedly repairs, cleans and optimizes the operating system. In fact, this program is distributed in a dubious way and, therefore, is categorized as a potentially unwanted application (PUA). Users often download and install these rogue apps inadve
"BOTAS" is a spam email campaign designed to proliferate the TrickBot Trojan. These emails are disguised as mail from the Turkish Petroleum Pipeline Corporation (BOTAŞ). The file attached to the emails is disguised as a PDF document, however, this is in fact a malicious executable that installs Tr
ModiRat is a Remote Access Trojan (RAT) which allows cyber criminals to control infected systems remotely. In most cases, this type of malware is used to access personal files, steal login credentials, and install additional malware. Note that most RATs do not appear in the list of running proces
ResultsSearchTool promotes a fake search engine by changing browser settings. It also displays advertisements. Therefore, this app functions both as adware and a browser hijacker. Commonly, apps of this type collect browsing-related and other data. Note that ResultsSearchTool is distributed thr
Discovered by GrujaRS, Gdjlosvtnib is malicious software (malware) belonging to the Snatch ransomware family. Systems infected with this ransomware experience data encryption and users receive ransom demands for decryption. During the encryption process, all affected file are appended with the ".g
VanTom is a Remote Access Trojan (RAT) based on njRat malware. Malicious programs classified as RATs allow remote access and control over an infected machine. These Trojans can have a wide variety of functionalities, which can enable likewise varied misuse. The VanTom RAT is a highly dangerous pi