https://www.prodaft.com/m/reports/WizardSpider_TLPWHITE_v.1.4.pdf (as Profdat says "The PRODAFT Threat Intelligence (PTI) team has assembled this report to provide in-depth knowledge about Conti malware and the group of threat actors that use it. Our team identified the group as Wizard Spider, and obtained visibility into its operational environment")
Added suspected victims to Gelsemium Threat Actor based on the ESET report in this link: https://www.welivesecurity.com/2021/06/09/gelsemium-when-threat-actors-go-gardening/
The reference was already added.
They have a map with all the victims