Understanding PlatyhystrixRugosus and Similar Malware

What is PlatyhystrixRugosus?

PlatyhystrixRugosus is a malicious extension that operates within browsers, particularly targeting Chrome and Edge. It’s capable of activating the “Managed by your organization” feature, which allows it to take control of browser settings, modify preferences, manage extensions/themes, and potentially compromise user privacy and security.

How Does It Spread?

PlatyhystrixRugosus typically spreads through deceptive means such as dubious websites, deceptive pop-up ads, bundled software installers, or even torrent file downloads. Its installation often involves tricking users into adding the extension unknowingly or alongside other seemingly harmless software.

Detection Names by Antivirus Software

• Gridinsoft: PUP.Win32.Chromnius.dg!c
• Sophos: Dragon Boss Solutions (PUA)
• Other antivirus software might have their own specific detection names.

Symptoms of Infection

• Activation of “Managed by your organization” feature in browsers.
• Installation of unwanted apps like Chromstera browser.
• Slower computer performance.
• Unwanted pop-up ads.
• Redirects to dubious websites.

Mitigating Future Infections

Ways to Avoid Future Infections:

• Be Cautious of Downloads: Avoid downloading software from untrustworthy sources.
• Read Permissions: During installations, carefully read permission prompts to avoid granting unnecessary access.
• Regular Software Updates: Keep your browser and security software updated to patch vulnerabilities.
• Browser Security Settings: Configure your browser’s security settings to prevent unauthorized installations or changes.

Removal Guide for PlatyhystrixRugosus

Manual Removal Steps:

1. Disable Extensions:
   • Open Chrome/Edge.
   • Go to Settings > Extensions.
   • Locate PlatyhystrixRugosus or any suspicious extensions and disable/remove them.
2. Reset Browser Settings:
   • In Chrome, navigate to Settings > Advanced > Reset and clean up > Restore settings to their original defaults.
   • In Edge, go to Settings > Reset settings.
3. Check Programs & Features (Windows) / Applications (Mac):
   • Uninstall any suspicious or unfamiliar programs/apps from your system.
4. Clear Browsing Data:
   • Clear cookies, cache, and browsing history in your browser settings.
5. System Scan with Antivirus:
   • Run a full system scan using reliable antivirus software to detect and remove any remaining traces of malware.
6. Check DNS Settings:
   • Ensure your DNS settings are not altered. Reset them to default if necessary.
7. Check Hosts File (Advanced):
   • For advanced users, check the hosts file for any suspicious entries and remove them.

Similar Malware Behavior

Other Malware with Similar Behavior:

• MacacaFascicularis
• IchthyosaurusComunicus
• PythonRegius

Conclusion

PlatyhystrixRugosus and similar malware pose serious threats to user privacy and system security. Preventing their installation through cautious browsing habits, coupled with prompt removal using the manual steps outlined, can mitigate potential damage and secure your system against these malicious threats.

Remember, staying vigilant while browsing, avoiding suspicious downloads, and regularly updating security measures are essential practices in safeguarding against such threats. If in doubt, consult with cybersecurity experts or use trusted antivirus solutions for further assistance in removal or protection against such malware.