RigelCrew Active
Ransomware group first observed in 2024. Uses Rubeus for deployment.1
Total Victims
2024-05-01
First Seen
2026-03-06
Last Seen
0
Known TTPs
19.4d
Avg Delay
0
Negotiations
ONION URLS
d24igbbahhpfdftde4foosna4aij7ubpdnxwi6ampndrwsbgrpmsqynz.onion
TOOLS
Rubeus
TrickBot
TDSSKiller
7-Zip
Atera
FILE EXTENSIONS
.rip
ACTIVITY TIMELINE
TOP SECTORS
TOP COUNTRIES
ACTIVITY HEATMAP
| Date | Victim Name | Country | Sector | Status |
|---|---|---|---|---|
| 2026-03-06 | Nexus Industries | Sweden | Manufacturing | Published |
No TTPs data
No YARA rules
No IoCs
No ransom notes