While inspecting malware samples submitted to VirusTotal, our team discovered DEADbyDAWN - ransomware designed to encrypt files. Also, DEADbyDAWN alters file names by replacing them with a random string of characters and appending its unique extension. It is important to note that different sample
Raasv2 is ransomware that our team discovered while examining samples submitted to VirusTotal. Our analysis revealed that Raasv2 encrypts files, renames all encrypted files, and creates the "#FILES-ENCRYPTED.txt" file (a ransom note). It prepends the decryption.helper@aol.com email address and the
Upon examination of the DisplayFraction application, our team has concluded that it displays characteristics of adware, categorizing it as such. Adware typically relies on questionable tactics for promotion and distribution. Our discovery of DisplayFraction occurred while investigating misleadin
Our researchers found the Mitu ransomware during a routine inspection of new submissions to the VirusTotal site. This program is part of the Djvu ransomware family. It is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Mitu on our testing system, it e
Miza is a ransomware-type program that our researchers discovered during a routine inspection of new submissions to VirusTotal. This program is part of the Djvu ransomware family. Malware within the ransomware classification encrypts data and demands payment for its decryption. After we executed
Our researchers discovered the Miqe ransomware during a routine inspection of new submissions to the VirusTotal website. This malicious program is part of the Djvu ransomware family. On our test machine, Miqe encrypted files and appended their filenames with a ".miqe" extension. For example, a fi
Advmonie[.]com is a rogue webpage that operates by promoting browser notification spam and by redirecting users to other (likely dubious/malicious) sites. Most visitors to this untrustworthy page access it through redirects generated by websites using rogue advertising networks. We discovered adv
Our inspection of the "HelpDesk Mail Delivery Failure" email revealed that it is spam. The letter falsely claims that the recipient's messages failed delivery. The goal of this phishing mail is to lure recipients into disclosing their log-in credentials. The spam email claims that due to a
After inspecting the "Inquiry List" email, we determined that it is spam. The letter attempts to lure recipients into disclosing their email account log-in credentials to an attached phishing file. This spam email requests the recipient to sign in and review the attached purchase inquiry.
Our researchers discovered the adrgyouguide[.]com rogue page while inspecting suspect websites. It is designed to promote browser notification spam and redirect visitors to other (likely unreliable/harmful) sites. Most visitors enter adrgyouguide[.]com and pages akin to it through redirects caused