Exploit belongs to the Paradise ransomware family and was discovered by Amigo-A. The cyber criminals who developed Exploit ransomware use it to extort money from people who have infected computers. This malicious program encrypts data, blocking access to files until a ransom is paid (a decryption
Discovered by Jakub Kroustek, GANDCRAB 5.3 (also known as GANDCRAB V5.3) is high-risk ransomware that belongs to the GANDCRAB malware family. After successful infiltration, GANDCRAB 5.3 encrypts most stored data and appends filenames with a random-string extension. For example, "sample.jpg" might
The lsass.exe (Local Security Authority Subsystem Service) is a legitimate Windows system file that can be found running in Task Manager as Local Security Authority Process. The process is responsible for enforcing the security policy on the operating system. It manages password changes, validate
sIHCLient.exe is a genuine Windows process that can be found running in Task Manager under the "SIH Client" name when the operating system starts fixing components required for automatic Windows updates. This genuine system file is placed in the "\Windows\System32\" folder. In many cases, cyber c
macos-online-security-check[.]com is deceptive, scam website that is used to promote a potentially unwanted app (PUA) called Mac Cleanup Pro. Visitors are encouraged to download and install this app to remove viruses that this website has supposedly detected. In fact, this is a common scam that
arberittertwa[.]info is similar to many other web pages of this type such as vercallactont[.]com, butitereventwil[.]info, and refrebrepheon[.]info. This is a rogue website that causes redirects to other untrustworthy sites. People do not usually visit arberittertwa[.]info intentionally - the site
Discovered by Michael Gillespie, Cube is classified as a ransomware-type program. When a computer is infected, files become unusable. Cube is designed to encrypt data and keep it locked unless a ransom is paid. It also renames all encrypted files by adding the ".cube" extension. For example, "1.j
The Game Jungle application is promoted as allowing users to access an extensive collection of free online games. People tend to download and install apps of this type unintentionally. Therefore, Game Jungle is categorized as a potentially unwanted app (PUA), a browser hijacker. Typically, apps o
Scranos is a malicious rootkit driver that stealthily infiltrates the system and continually injects it with a number of high-risk payloads. Most of the payloads (injected malicious applications) are categorized as data stealers. I.e., they are designed to steal various personal information (e.g.,
Gotcha is a ransomware-type program discovered by Michael Gillespie. Like most programs of this type, it is used by cyber criminals to encrypt files stored on a victim's computer and keep them unusable unless a ransom is paid. It adds the ".gotcha" extension to every encrypted file. For example,