While scrutinizing an untrustworthy installer acquired from an unreliable website, we came across the IlexAquifolium browser extension. Our investigation revealed that this extension exhibits questionable traits, as it can trigger the "Managed by your organization" setting in the Chrome browser, c
Days Locker is a malicious program classified as ransomware. This malware is designed to encrypt files and demand ransoms for the decryption. On our test machine, Days Locker encrypted files and altered their filenames with a ".Daysv3" extension. For example, a file originally titled "1.jpg" appe
ValleyRAT is a recently discovered malware that has drawn attention in the cybersecurity community. RATs, or Remote Access Trojans, are malicious software programs that enable threat actors to gain remote access and control over a victim's computer. Cybercriminals often use these tools to carry ou
After assessing TransformFusion, it has been established that its primary goal is to inundate users with intrusive advertisements, highlighting TransformFusion's role as adware. It is crucial to emphasize that apps similar to TransformFusion are often inadvertently installed by users due to the
After evaluating LogState, it has been determined that its main objective is to overwhelm users with intrusive advertisements, indicating that LogState functions as adware. It is essential to underscore that applications resembling LogState are frequently unintentionally installed by users due t
Our researchers discovered the UniversalSync app while investigating new submissions to the VirusTotal site. After analyzing this application, we learned that it is advertising-supported software (adware) belonging to the AdLoad malware family. UniversalSync runs intrusive advertisement campaign
Our research team discovered the VirtualBalance application while investigating new submissions to the VirusTotal website. After examining this piece of software, we determined that it is adware. VirtualBalance is part of the AdLoad malware family. This app generates revenue for its designers by
CiphBit is a ransomware-type program. It is designed to encrypt data and demand ransoms for the decryption. On our test machine, CiphBit encrypted files and altered their filenames. Original titles were appended with a unique ID assigned to the victim, the cyber criminals' email address, and an e
While reviewing new file submissions to the VirusTotal platform, our research team discovered the UpperTheory application. We determined that it is advertising-supporting software (adware) belonging to the AdLoad malware family. This app is designed to run intrusive advert campaigns. Adw
While checking out dubious websites, our research team discovered the Galaxy Tab browser extension. It promises to display galaxy-themed browser wallpapers. This extension modifies browser settings to generate redirects. Due to this behavior, it is classed as a browser hijacker. Browser-hi