DesignationDrive is an adware-type application that our research team discovered while investigating new submissions to the VirusTotal website. This app is part of the AdLoad malware family. DesignationDrive is designed to feed users with unwanted/deceptive advertisements. Adware stands
Upon examination of mycaptchaspace[.]top, our team has determined that its purpose is to deceive visitors into granting permission for notification delivery. Mycaptchaspace[.]top utilizes deceptive content to obtain this permission. Our team came across mycaptchaspace[.]top while investigating dub
While inspecting malware samples submitted to VirusTotal, our team discovered DEADbyDAWN - ransomware designed to encrypt files. Also, DEADbyDAWN alters file names by replacing them with a random string of characters and appending its unique extension. It is important to note that different sample
Raasv2 is ransomware that our team discovered while examining samples submitted to VirusTotal. Our analysis revealed that Raasv2 encrypts files, renames all encrypted files, and creates the "#FILES-ENCRYPTED.txt" file (a ransom note). It prepends the decryption.helper@aol.com email address and the
Upon examination of the DisplayFraction application, our team has concluded that it displays characteristics of adware, categorizing it as such. Adware typically relies on questionable tactics for promotion and distribution. Our discovery of DisplayFraction occurred while investigating misleadin
Our researchers found the Mitu ransomware during a routine inspection of new submissions to the VirusTotal site. This program is part of the Djvu ransomware family. It is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Mitu on our testing system, it e
Miza is a ransomware-type program that our researchers discovered during a routine inspection of new submissions to VirusTotal. This program is part of the Djvu ransomware family. Malware within the ransomware classification encrypts data and demands payment for its decryption. After we executed
Our researchers discovered the Miqe ransomware during a routine inspection of new submissions to the VirusTotal website. This malicious program is part of the Djvu ransomware family. On our test machine, Miqe encrypted files and appended their filenames with a ".miqe" extension. For example, a fi
Advmonie[.]com is a rogue webpage that operates by promoting browser notification spam and by redirecting users to other (likely dubious/malicious) sites. Most visitors to this untrustworthy page access it through redirects generated by websites using rogue advertising networks. We discovered adv
Our inspection of the "HelpDesk Mail Delivery Failure" email revealed that it is spam. The letter falsely claims that the recipient's messages failed delivery. The goal of this phishing mail is to lure recipients into disclosing their log-in credentials. The spam email claims that due to a