Closed yoryio closed 9 months ago
The ransomware group is currently posting some victims and leaks.
Here is the url for the leaks : http://rhysidafohrhyy2aszi7bm32tnjat5xri65fopcxkdfxhi4tidsg7cad.onion/archive.php
and the parser :
grep "m-2 h4" source/rhysida-* | cut -d '>' -f 3 | cut -d '<' -f 1
This address is also to be considered among the additions: http://rhysidafohrhyy2aszi7bm32tnjat5xri65fopcxkdfxhi4tidsg7cad.onion/archive.php?auction
with the same parser
host location
rhysidafohrhyy2aszi7bm32tnjat5xri65fopcxkdfxhi4tidsg7cad.onion
group name
Rhysida
group information
New ransomware group spotted in the Dark Web. This group doesn't list their victims in their website.
host
v3 (onion)
parser
No response