Discovered by dnwls0719, OFFWHITE is a part of the Nefilim ransomware family. Software of this type is designed encrypt data, rename encrypted files and create and/or display ransom messages. OFFWHITE renames encrypted files by appending the ".OFFWHITE" extension to filenames. For example, it cha
Manuals Aid is rogue software categorized as a browser hijacker. It is endorsed as a tool for easy access to various product and brand manuals, however, Manuals Aid modifies browsers and promotes manualsaid.com (a bogus search engine). Additionally, this browser hijacker has data tracking capabil
ZorgoCry is ransomware which was discovered by Amigo-A. It encrypts victims' files, renames them by appending a new extension, changes the desktop wallpaper and creates a ransom message. ZorgoCry appends the ".projectzorgo" extension to filenames. For example, it would rename a file called "1.jpg
MusiCalm is a rogue application categorized as adware. It operates by running intrusive advertisement campaigns. Therefore, it delivers various unwanted and possibly harmful ads. Furthermore, most adware programs possess data tracking capabilities employed to monitor users' browsing habits, and it
Paymen45 is malicious software that is part of the Everbe ransomware family. This malware encrypts data and demands ransom payments for decryption. During the encryption process, all files are appended with the ".g8R4rqWIp9" extension. For example, a file such as "1.jpg" would appear as "1.jpg.g8R
hastopnet[.]com is a deceptive website designed to promote unwanted applications. Like many other web pages of this kind, hastopnet[.]com claims that the visitor's device is infected with viruses and encourages them to remove the issue with a shady app (which it offers to download and install).
.Crypto ransomware was discovered by dnwls0719 and is written in the Go programming language. Like most programs of this type, .Crypto encrypts files, renames them and generates a ransom message. It renames files by adding the victim's ID, filerestory@gmail.com email address and appending the ".Cr
Discovered by Dnwls0719, LOL (Dharma) is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During the encryption process, all compromised files are renamed according to this
Get Recipes Now is presented as an application that allows people to access websites providing recipes and recommendations. For example, Food Network and Yummly. In fact, this app promotes a fake search engine (search.hgetrecipesnow.com), changes browser settings, and is categorized as a potential
afunione[.]club is virtually identical to many other rogue websites including, for example, rdsb2[.]club, allmeganews[.]com, and cicort[.]com. When opened, web pages of this type load dubious content or open other untrusted websites. People often arrive at pages such as afunione[.]club due to pot