Our research team found the Stratus malicious browser extension in an installation setup promoted by a deceptive webpage. It is pertinent to mention that such installers may contain multiple pieces of unwanted/dangerous software. The Stratus extension targets Google Chrome and Microsoft Edge brow
Our research team discovered the Web Resource Viewer app while investigating questionable websites. This application was contained in an installation setup together with other undesirable and potentially dangerous software. Web Resource Viewer is a PUA (Potentially Unwanted Application), and softw
Our researchers discovered the PowerRemote app during a routine inspection of new submissions to the VirusTotal site. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. PowerRemote is designed to run intrusive advertisement campaigns.
Upon inspection, we determined that the "Netflix - Update Your Payment Details" email is fake. This spam letter states that there are issues regarding the billing information on the recipient's Netflix account. It must be emphasized that this mail is not associated with the actual Netflix streami
While reviewing untrustworthy websites, our researchers discovered the "Windows Defender Firewall Alert" technical support scam. This scheme mimics Windows alerts and claims the user's device is infected. The aim is to lure the victim into calling a fake helpline, thus roping them into an elaborat
Upon scrutinizing the application, it became evident that ResourceActivity functions as adware, displaying intrusive advertisements to users when active. Beyond the nuisance of ads, ResourceActivity may also gather diverse data. Therefore, users impacted by this should uninstall ResourceActivity
In the course of our inspection of malware samples on VirusTotal, we came across a ransomware variant named Xrp belonging to the GlobeImposter family. The purpose of Xrp is to encrypt files. Also, it appends an email address and the ".xrp" extension to filenames and provides a ransom note ("Read_F
VirtualDocument is a rogue application. Upon inspection, we determined that this piece of software operates as adware. VirtualDocument is part of the AdLoad malware family. This app is designed to generate revenue for its developers by feeding users with undesirable and potentially harmful adver
During an examination of the application, we discovered that LogiOptions is a suspicious program without a clear purpose. Moreover, its distribution involves other shady components. Thus, users should remove LogiOptions and all associated files and apps from affected computers as soon as possible.
While investigating new malware submissions to VirusTotal, our researchers found the LockShit BLACKED ransomware, which is based on Chaos. Malicious programs within this category are designed to encrypt files and demand payment for their decryption. On our test machine, LockShit BLACKED encrypted