EditExecute is a rogue app discovered by our research team while checking out new file submissions to the VirusTotal site. Following inspection, we determined that this application is adware belonging to the AdLoad malware family. EditExecute is designed to deliver intrusive advertisement campai
Following a thorough examination, we have discovered that InitiatorRecord delivers intrusive advertisements. As a result, InitiatorRecord has been categorized as adware. It is crucial to note that applications of this nature may be crafted to collect diverse information and are often disseminate
After inspecting the "DHL Express - Incomplete Delivery Address" email, we determined that it is fake. This spam letter promotes a phishing scam. It lures recipients into disclosing their email log-in credentials by claiming that their package could not be sent due to an error in the delivery addr
During our comprehensive evaluation of malware samples submitted to VirusTotal, it came to light that WANA CRY is ransomware imitating another well-known ransomware, WannaCry. WANA CRY is based on Chaos ransomware. Its purpose is to encrypt files. Additionally, it changes the desktop wallpaper, cr
Upon review, we determined that the "Email Authentication Expires" email is spam. This phishing letter informs the recipient that their email account authentication is due to expire. The goal is to deceive recipients into disclosing their log-in credentials (i.e., passwords), thus allowing the sca
After a thorough analysis, the results suggest that ObjectBuffer exhibits bothersome advertisements and has the potential to collect diverse data. Such applications are classified as adware. In order to prevent adverse consequences, users are advised to uninstall these types of apps from their a
Upon examination, we have identified that re-captha-version comprises a collection of domains featuring numerical variations within their URLs. For instance, re-captha-version-2-11[.]top and re-captha-version-2-13[.]top exemplify this pattern. Additionally, the top level domains also differ. Examp
Upon thorough scrutiny, it has been established that the CapraHircus application is unreliable and has the potential to inflict various harms on users. CapraHircus can access a wide range of data, manipulate extensions and themes, and activate the "Managed by your organization" feature in Chrome a
While inspecting suspect websites, our researchers discovered the nvideas[.]site rogue page. It operates by promoting browser notification spam and redirecting users to different (likely unreliable/malicious) sites. Most visitors to pages like nvideas[.]site enter them through redirects generated
Antivirusapp[.]space is the address of a rogue webpage. It is designed to promote scams and browser notification spam. Furthermore, this page can redirect users to other (likely untrustworthy/harmful) sites. The majority of visitors to such webpages access them via redirects caused by websites th