FakeBat (also known as EugenLoader) is a malicious software loader and dropper that has emerged as a significant player in the world of cyber threats. FakeBat has been associated with malvertising campaigns since at least November 2022. Although the specific payload delivered by FakeBat in these
Following a comprehensive review of this email, it has been confirmed that it is a fraudulent message crafted to entice recipients into accessing the attached file. The main goal of the cybercriminals behind this scheme is to deceive recipients into unknowingly executing malicious software on thei
While examining malware samples uploaded to VirusTotal, we discovered a ransomware variant called Itqw. This ransomware is responsible for encrypting files and modifying their filenames by adding the ".itqw" extension. Additionally, Itqw creates a ransom note, a file named "_readme.txt". Itqw mod
While analyzing malware samples on VirusTotal, we came across a ransomware variant identified as Ithh. This ransomware encrypts files and modifies their filenames by appending the ".ithh" extension. Additionally, Ithh generates a ransom note, which can be found within a file named "_readme.txt".
During the analysis of malware samples uploaded to VirusTotal, we uncovered a ransomware variant named Itrz. This ransomware encrypts files and alters their filenames by appending the ".itrz" extension. Moreover, Itrz generates a ransom note, usually located within a file named "_readme.txt". Itr
While investigating questionable websites, our researchers discovered the Tab Clear browser extension. It is endorsed as a tool capable of closing all manner of browser tabs (regular, incognito, pinned) in a single click. After analyzing Tab Clear, we determined that it is advertising-supported so
Our research team discovered the Horizon Timez browser extension while investigating deceptive sites. It promises to display "video-themed" browser wallpapers. After examining this piece of software, we determined that it is a browser hijacker. Horizon Timez modifies browsers to promote the psrcfo
Our researchers discovered the Search Center browser extension during a routine inspection of suspect sites. This software is presented as a website text searching and highlighting tool that supports keyboard shortcuts. After examining Search Center, we determined that it is adware. This extensio
Everywhere Weather is a browser extension that promises quick access to personalized weather forecasts with real-time updates for various countries, regions, and cities worldwide. Our research team found this piece of rogue software while investigating questionable websites. After examining Every
Our researchers discovered the "Google Safe Browser Total Protection" scam while reviewing deceptive websites. Presented as a browser security tool from Google, the scheme "detects" various threats on users' devices. It must be stressed that all the information provided by this scam is false, and