Analysis of the Tritax FakeAV family, their active campaign and the FakeAV social engineering kit
This time I’m diving into an active FakeAV campaign, I’ve named it the NameChanger FakeAV, it falls under the Tritax family. Now why I named it the namechanger, just take…
Analysis of the Tritax FakeAV family, their active campaign and the FakeAV social engineering kit
This time I’m diving into an active FakeAV campaign, I’ve named it the NameChanger FakeAV, it falls under the Tritax family. Now why I named it the namechanger, just take…
Analysis of the Tritax FakeAV family, their active campaign and the FakeAV social engineering kit
This time I’m diving into an active FakeAV campaign, I’ve named it the NameChanger FakeAV, it falls under the Tritax family. Now why I named it the namechanger, just take…
Piracy browser ‘ransomware’
About 3 months ago I published an article regarding the ‘browlock’ browser ransomware here. Recently I discovered a new variant of this browser ransomware. This time in stead of a…
Piracy browser ‘ransomware’
About 3 months ago I published an article regarding the ‘browlock’ browser ransomware here. Recently I discovered a new variant of this browser ransomware. This time in stead of a…
Analysis of the “Internet Security” fake antivirus leads to family of FakeAV and possible actor behind it
Stumbled upon another one of the FakeAV’s, its called”Internet Security” this time and the detection is decent for once. Initial payload from exploit kit b4662d40b12250f79ffec121a083ba6e (VT 19/48) Unpacked payload f77c7098ce70e9e197a37f1264357bf1 (VT…
Piracy browser ‘ransomware’
About 3 months ago I published an article regarding the ‘browlock’ browser ransomware here. Recently I discovered a new variant of this browser ransomware. This time in stead of a…
Piracy browser ‘ransomware’
About 3 months ago I published an article regarding the ‘browlock’ browser ransomware here. Recently I discovered a new variant of this browser ransomware. This time in stead of a…
Analysis of the “Internet Security” fake antivirus leads to family of FakeAV and possible actor behind it
Stumbled upon another one of the FakeAV’s, its called”Internet Security” this time and the detection is decent for once. Initial payload from exploit kit b4662d40b12250f79ffec121a083ba6e (VT 19/48) Unpacked payload f77c7098ce70e9e197a37f1264357bf1 (VT…
Analysis of the “Internet Security” fake antivirus leads to family of FakeAV and possible actor behind it
Stumbled upon another one of the FakeAV’s, its called”Internet Security” this time and the detection is decent for once. Initial payload from exploit kit b4662d40b12250f79ffec121a083ba6e (VT 19/48) Unpacked payload f77c7098ce70e9e197a37f1264357bf1 (VT…