Discovered by Karsten Hahn, FlyingShip ransomware is based on CryptoWire. It encrypts files using the AES-257 encryption algorithm and renames all encrypted files by inserting the ".flyingship" string into the filenames. For example, it would rename a file called "1.jpg" to "1.flyingship.jpg", "2.
"Secure Boot Violation" is a deceptive message displayed by screen-locking malicious software. Screenlockers prevent using the infected device (by locking its screen) and often present users with false information regarding the loss of access. "Secure Boot Violation" is no exception to this, and
ivpnconfig[.]com is a deceptive website that often tricks visitors into downloading and installing a potentially unwanted application (PUA). For example, a fake anti-virus tool, adware, or browser hijacker. In most cases, these sites are opened through other dubious websites, untrusted advertise
Total Antivirus 2020 is software endorsed as a powerful and effective anti-virus suite, however, it is unable to perform its advertised functionality and is therefore classified as a fake anti-virus program. The purpose of this nonoperational application is to trick users into purchasing it, there
ExtendedTool is rogue software classified as adware with browser hijacker traits. This application operates by delivering intrusive advertisement campaigns, making alterations to browser settings and promoting fake search engines. ExtendedTool promotes akamaihd.net via Safe Finder in this manner
DivisionFormat is a rogue application, classified as adware. It also has browser hijacker traits. Following successful installation, it runs intrusive advertisement campaign, makes modifications to browser settings to promote fake search engines (for example, search.dominantmethod.com). Additio
AssistiveRecord is a potentially unwanted application (PUA), which is classified as adware and a browser hijacker. I.e., it is designed to serve advertisements and promote Safe Finder (by opening it via akamaihd.net). PUAs like AssistiveRecord are often designed to collect data relating to users
Taurus (also known as Taurus Project) is the name of a stealer created by a team of cyber criminals called Predator The Thief team. This information-stealing malware is sold on hacker forums for US$100. It is capable of accessing and stealing sensitive information from certain browsers, cryptocur
Zbw is a malicious program classified as ransomware. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, all compromised files are renamed according to this pattern: original filename, unique ID, cyber crimin
StreamsSearch is rogue software, which operates by making modifications to browser settings to promote streams-search.com (a fake search engine). Due to this, StreamsSearch is classified as a browser hijacker. Additionally, it has data tracking capabilities, which are employed to monitor users' br