Kernel Inactive

Ransomware group first observed in 2020. Uses Mythic for deployment.
PDF Report Back to Groups
0
Total Victims
2020-04-01
First Seen
2021-12-06
Last Seen
5
Known TTPs
3.4d
Avg Delay
0
Negotiations
ONION URLS
tdcbepo52mfbpclcnnh4geps5ygs6fa52uveunffydxhvqcdg6rdfekz.onion
TOOLS
Mythic AnyDesk ConnectWise GMER
FILE EXTENSIONS
.pay
ACTIVITY TIMELINE
TOP SECTORS
TOP COUNTRIES
ACTIVITY HEATMAP
Date Victim Name Country Sector Status
No victims recorded
Technique ID Technique Name Tactic
T1071.001 Web Protocols Command and Control
T1572 Protocol Tunneling Command and Control
T1110.001 Password Guessing Credential Access
T1059.006 Python Execution
T1068 Exploitation for Privilege Escalation Privilege Escalation

No YARA rules

No IoCs

No ransom notes