PanelActoresCampanasMapaTTPs
Panel » Actores » vendetta
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
vendetta logo

vendetta

1 incidentes 0 paises 0 sectores ransomware TR Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
Vendetta is identified as a sophisticated ransomware group that emerged in early 2023, specifically discovered in February 2023 as a variant of the RSAUtil ransomware family, often noted as a rebranding of Cuba ransomware. This group differentiates itself by employing double extortion tactics, wherein sensitive data is exfiltrated prior to encryption, with threats of public release if ransom demands are not met. Their primary motivation is financial gain, targeting large organizations across various sectors with high-profile attacks and demanding significant ransom payments.
Malware asociado
Arkei, win.emotet
Tecnicas MITRE
T1056, T1106, T1531, T1059, T1140, T1187
CVEs relacionadas
CVE-2023-36884, CVE-2023-29324, CVE-2023-23397, CVE-2023-21715, CVE-2023-20198, CVE-2017-11882

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

AustriaAustraliaCanadaChileChinaCubaEgyptSpainFranceGreece

Sectores objetivo (SOCRadar)

Construction of BuildingsSoftware PublishersEnterprises & HoldingAccommodationManufacturingConstructionPublic AdministrationOil & GasEducational ServicesWholesale Trade

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com