From 53a65b17d204158b494b2022963facf2c935f8bb Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Thu, 19 Sep 2024 11:45:32 +0200 Subject: [PATCH] chg: [ransomware] updated to the latest version --- clusters/ransomware.json | 65 ++++++++++++++++++++++++++++++++++++---- 1 file changed, 60 insertions(+), 5 deletions(-) diff --git a/clusters/ransomware.json b/clusters/ransomware.json index 3ca0ead..2a91f5c 100644 --- a/clusters/ransomware.json +++ b/clusters/ransomware.json @@ -29291,7 +29291,9 @@ { "meta": { "links": [ - "http://dataleakypypu7uwblm5kttv726l3iripago6p336xjnbstkjwrlnlid.onion/" + "http://dataleakypypu7uwblm5kttv726l3iripago6p336xjnbstkjwrlnlid.onion/", + "http://panelqbinglxczi2gqkwderfvgq6bcv5cbjwxrksjtvr5xv7ozh5wqad.onion", + "http://panelqbinglxczi2gqkwderfvgq6bcv5cbjwxrksjtvr5xv7ozh5wqad.onion/Url=4094dd92-0f91-4699-8328-fdb7070a8230" ], "refs": [ "https://www.ransomlook.io/group/el dorado" @@ -29448,7 +29450,8 @@ "links": [ "http://c2mdhim6btaiyae3xqthnxsz64brvdxsnbty4tvos65zb565y4v55iid.onion", "http://c2mdhim6btaiyae3xqthnxsz64brvdxsnbty4tvos65zb565y4v55iid.onion/b/", - "http://c2mdhim6btaiyae3xqthnxsz64brvdxsnbty4tvos65zb565y4v55iid.onion/blogs.html" + "http://c2mdhim6btaiyae3xqthnxsz64brvdxsnbty4tvos65zb565y4v55iid.onion/blogs.html", + "http://pyrx.cc" ], "refs": [ "https://www.ransomlook.io/group/pyrx" @@ -29496,7 +29499,8 @@ "http://nullbulge.co/blog.html", "http://nullbulge.se", "http://nullbulge.com", - "http://goocasino.org" + "http://goocasino.org", + "http://nullblgtk7dwzpfklgktzll27ovvnj7pvqkoprmhubnnb32qcbmcpgid.onion" ], "refs": [ "https://www.ransomlook.io/group/nullbulge" @@ -29578,12 +29582,26 @@ "value": "ransomcortex" }, { + "description": "", "meta": { "links": [ "http://lynxblog.net/", "http://lynxbllrfr5262yvbgtqoyq76s7mpztcqkv6tjjxgpilpma7nyoeohyd.onion/leaks", "http://lynxch2k5xi35j7hlbmwl7d6u2oz4vp2wqp6qkwol624cod3d6iqiyqd.onion/login", - "http://lynxblog.net/leaks" + "http://lynxblog.net/leaks", + "http://lynxchatly4zludmhmi75jrwhycnoqvkxb4prohxmyzf4euf5gjxroad.onion/login", + "http://lynxchatohmppv6au67lloc2vs6chy7nya7dsu2hhs55mcjxp2joglad.onion/login", + "http://lynxchatbykq2vycvyrtjqb3yuj4ze2wvdubzr2u6b632trwvdbsgmyd.onion/login", + "http://lynxchatde4spv5x6xlwxf47jdo7wtwwgikdoeroxamphu3e7xx5doqd.onion/login", + "http://lynxchatdy3tgcuijsqofhssopcepirjfq2f4pvb5qd4un4dhqyxswqd.onion/login", + "http://lynxchatdykpoelffqlvcbtry6o7gxk3rs2aiagh7ddz5yfttd6quxqd.onion/login", + "http://lynxblogxstgzsarfyk2pvhdv45igghb4zmthnzmsipzeoduruz3xwqd.onion", + "http://lynxblogco7r37jt7p5wrmfxzqze7ghxw6rihzkqc455qluacwotciyd.onion", + "http://lynxblogijy4jfoblgix2klxmkbgee4leoeuge7qt4fpfkj4zbi2sjyd.onion", + "http://lynxblogmx3rbiwg3rpj4nds25hjsnrwkpxt5gaznetfikz4gz2csyad.onion", + "http://lynxblogoxllth4b46cfwlop5pfj4s7dyv37yuy7qn2ftan6gd72hsad.onion", + "http://lynxblogtwatfsrwj3oatpejwxk5bngqcd5f7s26iskagfu7ouaomjad.onion", + "http://lynxblogxutufossaeawlij3j3uikaloll5ko6grzhkwdclrjngrfoid.onion" ], "refs": [ "https://www.ransomlook.io/group/lynx" @@ -29627,7 +29645,44 @@ }, "uuid": "1fe17577-91bb-581b-8189-c61f05cf35aa", "value": "helldown" + }, + { + "description": "Official twitter account: https://x.com/ValenciaLeaks72", + "meta": { + "links": [ + "http://6doyqxqqj36vnedtt2zwxmngx52mgyp7brbrtwkyd75jgiolocoybgid.onion/" + ], + "refs": [ + "https://www.ransomlook.io/group/valencia leaks" + ] + }, + "uuid": "af5911d6-37d6-513c-a90e-1b373378f55f", + "value": "valencia leaks" + }, + { + "meta": { + "links": [ + "http://xzbltrroh4ocknyi7kj2ucjuw63fhyy23dh6lplydl545d33kbygw2id.onion/home" + ], + "refs": [ + "https://www.ransomlook.io/group/soleenya" + ] + }, + "uuid": "c6c0200a-9c77-5285-ad47-74c7a3d53bdb", + "value": "soleenya" + }, + { + "meta": { + "links": [ + "http://orca66hwnpciepupe5626k2ib6dds6zizjwuuashz67usjps2wehz4id.onion" + ], + "refs": [ + "https://www.ransomlook.io/group/orca" + ] + }, + "uuid": "2a1e103b-da5f-56d6-a0c8-5daff4c4fd87", + "value": "orca" } ], - "version": 132 + "version": 133 }