Jupiter Active
Ransomware group first observed in 2024. Uses Sliver C2 for deployment.1
Total Victims
2024-12-01
First Seen
2026-03-06
Last Seen
0
Known TTPs
34.9d
Avg Delay
0
Negotiations
ONION URLS
47pabq6k2jkkrcjjdwg7ymiyk6mqanjbcibwjsn56z3q6p73pkhryoto.onion
TOOLS
Sliver C2
nltest
Mimikatz
Process Hacker
ngrok
FILE EXTENSIONS
.doom
ACTIVITY TIMELINE
TOP SECTORS
TOP COUNTRIES
ACTIVITY HEATMAP
| Date | Victim Name | Country | Sector | Status |
|---|---|---|---|---|
| 2026-03-06 | Global Partners | Austria | Aerospace & Defense | Published |
No TTPs data
No YARA rules
No IoCs
No ransom notes