BWNG belongs to the Matrix ransomware family. It encrypts victim's files, changing the filenames, and also stores several additional files on the desktop. BWNG renames each encrypted file using the following pattern: "[billwong73@yahoo.com].[random_string].BWNG", thus making them indistinguishable
Mark is malicious software and a variant of Paradise ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, files are renamed according to the following pattern: original title, the wo
Discovered by malware researcher, Onion, 5ss5c is malicious software and an updated variant of Satan ransomware. It operates by encrypting data and demanding payment for decryption. When 5ss5c ransomware encrypts, all affected files are renamed according to the following pattern: "[5ss5c@mail.ru][
"YOU ARE THE CHOSEN!" is a scam run by deceptive websites. It claims that visitors have been chosen and can win a special reward. These scams are simply intended to generate revenue for their designers. They must never be trusted, as doing so can lead to serious issues. Sites that promote "YOU AR
install-plug-s3[.]com is designed by scammers who seek to deceive unsuspecting visitors into installing potentially unwanted applications (PUAs), such as browser hijackers, adware or other apps of this kind, through a fake Adobe Flash Player installer. In some cases, these websites are used to s
JhoneRAT is the name of a Remote Access Tool (Trojan), which is distributed through malicious Microsoft Office documents. Cyber criminals behind it target Arabic-speaking users. This malicious program selects (by filtering) victims by checking the keyboard layout of their computers. JhoneRAT is c
"You have (1) package waiting" is a scam run by deceptive websites. Under the guise of an official delivery tracking site, the scam claims that visitors have packages waiting for them. The purpose of this scheme is to trick users into making a monetary transaction, a fake delivery fee. All inform
Discovered by GrujaRS, Picocode is ransomware and an updated version of Pico. Like many other programs of this type, Picocode changes filenames of all encrypted files and creates a ransom message. It renames files by appending the ".picocode#" extension and a number. For example, it renames "1.jp
MoFinder is software, categorized as adware. While typically applications of this type are promoted as "useful", they operate by running intrusive advertisement campaigns. Therefore, MoFinder delivers various unwanted, dubious and even harmful ads. Since most users install this program inadvertent
This is a scam website used by criminals to extort money from unsuspecting people. It is disguised as the website of an international department of lost and found packages. The main purpose of this site is to trick recipients into paying for delivery of unclaimed packages. Generally, websites of