Discovered by Karsten Hahn, SSHBOT (also known as P4YME) is a screenlocker - malware that locks computers. The main purpose of SSHBOT is to ensure that victims are unable to access the Windows desktop or use installed programs, files, etc., unless they pay a ransom to the cyber criminals responsib
Kutaki is a typical keylogger (keystroke logger) software that captures keyboard input. Cyber criminals use programs of this type to steal sensitive information, which can be misused to generate revenue in various ways. Victims are often unaware that their actions are being monitored. If Kutaki o
Aim is malware belonging to a family of ransomware called Dharma. It renames all encrypted files by adding the victim's ID, the Smith1@mailfence.com email address and appending the ".Aim" extension to filenames. For example, "1.jpg" would become "1.jpg.id-C279F237.[Smith1@mailfence.com].Aim", "2.j
"Your account has encountered an error 505" refers to a spam campaign distributing phishing emails. The term "spam campaign" is used to define a large-scale operation, during which thousands of deceptive/scam emails are sent. The messages distributed through this spam campaign claim that recipient
XCSSET is malicious software designed to steal various information and capable of operating as ransomware. Some of the main functionality of this malware includes modification of displayed websites, stealing of log-in credentials (i.e. usernames and passwords) and other data relating to browsin
My Apps Center is a browser hijacker designed to promote hmyappscenter.net (the address of a fake search engine) by modifying certain browser settings. These apps also function as information tracking tools (they gather browsing-related and other data). Note that My Apps Center is distributed wit
DarkStealer is malicious software functioning as a file grabber, data stealer, and remote administration tool. This software is for sale on a hacker forums on which cyber criminals can purchase a monthly subscription for it. DarkStealer is powerful malware, which can be used for various malicious
the-best-casino-bonus[.]com is a rogue website similar to hopsigna.com, message-inbox.icu, broindifferd.club and thousands of others. Visitors to this web page are presented with dubious content and/or are redirected to other untrusted, possibly malicious sites. Most users access these websites u
hopsigna[.]com is an untrusted website which opens other pages of this kind or displays dubious content. Some examples of other sites similar to hopsigna[.]com include message-inbox[.]icu, broindifferd[.]club and check-you-robot[.]site. Generally, users do not visit these web addresses intentiona
suprotok[.]xyz is an untrusted website designed by scammers who seek to deceive visitors into believing that their iPhones are infected with viruses and installing a potentially unwanted application (PUA). This app supposedly removes the viruses. Commonly, these sites are opened through dubious