WSHLP is a ransomware-type program and part of the Dharma ransomware family. Generally, malware of this type is designed to encrypt files, rename them, and provide victims with instructions about how to contact the developers through a ransom message. WSHLP renames encrypted files by adding the v
In most cases, cyber criminals/scammers behind phishing emails contact potential victims via email, text message or telephone. They attempt to trick people into providing sensitive information such as credit card details and passwords. In this particular case, scammers send emails disguised as me
PDFSearchio is dubious software categorized as a browser hijacker. It operates by making alterations to browser settings to promote pdfsearchio.com (a bogus search engine). This browser hijacker also has data tracking capabilities, which are used to collect browsing-related information. Since mos
Like most browser hijackers, RecipeSearch promotes a fake search engine address by changing browser settings. In this case, it assigns them to hp.myway.com. It can also access and collect various data. Users often download and install browser hijackers inadvertently and, for this reason, they are
Discovered by GrujaRS, Jackpot is malicious software categorized as ransomware. During the encryption process all compromised files are appended with the ".coin" extension. For example, a file named something like "1.jpg" would appear as "1.jpg.coin", "2.jpg" as "2.jpg.coin", and so on. After thi
Typically, cyber criminals use malspam campaigns to trick recipients into opening a downloaded malicious attachment, or file downloaded through a website link, in a received email. When opened, the file installs malicious software. Commonly, emails sent by cyber criminals are disguised as importan
DefaultAnalog is an adware-type application with browser hijacker traits. Following successful installation, it delivers intrusive advertisement campaigns, modifies browser settings and promotes fake search engines. On Safari browsers, this app promotes 0yrvtrh.com, whilst on Google Chrome, sear
ApocalypseClipper is clipper malware that targets cryptocurrency wallet addresses. I.e., it hijacks cryptocurrency transactions by replacing wallet addresses entered by users with those owned by the cyber criminals behind ApocalypseClipper. This malware is for sale on a hacker forum and costs the
Groooboor is malicious software classified as a backdoor Trojan. This malware open a "backdoor" for other malicious programs to infiltrate. I.e., Groooboor can download/install additional malware. This type of malware can infect systems with other types of Trojans, ransomware, cryptominers and oth
Discovered by MalwareHunterTeam, CoronaCrypt0r is ransomware designed to encrypt files, change filenames, lock the computer screen and display a ransom message. It renames encrypted files by appending the ".Lock" extension to filenames. For example, it would rename "1.jpg" to "1.jpg.Lock", "2.jpg