MP3 Training Audio Compilation

Dear blog readers,

I've decided to share with everyone a recently made available MP3 audio training compilation on the topic of OSINT cybercrime research and threat intelligence which you can check out here.

Stay tuned.

How I Tracked Down the Conti Ransomware Gang? - Video Demonstration

Dear blog readers,

I've decided to share with everyone a recently recorded video on the topic of "How I Tracked Down the Conti Ransomware Gang?" which is also available here.

Enjoy.

Exposing Bulgaria's Emil Kyulev/RansomedVC/Magadans/BorisTulev/BlackForums/ImpotentNaEvropa/Everest Ransomware Group/DADS Agency - An OSINT Analysis

Dear blog readers,

I've decided to share some OSINT notes on Bulgaria's Emil Kyulev.

Sample network assets reconnaissance:

e[.]kyulev[[.]]protonmail[.]com

hxxp://magadans[.]net

14cbx34hgJYN1iyFvT4PsCxKVsGDuZi5pR

0x0837a9df92d68505ceba32fb540475e29fbf29ff

hxxp://magadans23[.]com

hxxp://magadans23[.]info 

hxxp://magadans23[.]net

admin[[.]]ransomed[.]vc

hxxp://t[.]me/RansomedSupport

hxxp://k63fo4qmdnl4cbt54sso3g6s5ycw7gf7i6nvxl3wcf3u6la2mlawt5qd[.]onion/

hxxp://f6amq3izzsgtna4vw24rpyhy3ofwazlgex2zqdssavevvkklmtudxjad[.]onion/

TOX: 192D52C7C18F3D2693ED2453E64C53EC0CCF0255AB2291F019B65BA84442B313C410DE132E59

hxxp://twitter[.]com/RansomedVC

hxxp://t[.]me/USISAutoLookupBot

hxxp://breached[.]wiki - 172[.]232[.]4[.]89

hxxp://breached[.]fun - 162[.]255[.]119[.]114

ransomed[.]nigge[.]rs

BorisTulev

hxxp://t[.]me/s/[.]EOMLOL

hxxp://blackforums[.]net

impotentnaevropa

threasec[.]]xmpp[.]jp

hxxp://t[.]me/s/RansomedSupport

bc1qg07auf7efld3edzyjs2wqztaky39xjdyk0uprj

bc1qqc7nla44te4wxyvf9j7zxtc5q296sxn94k6v00

bc1qwv6hg860mf9g0at8fe64nsswa2pa73vgd9tvj5

bc1qqc7nla44te4wxyvf9j7zxtc5q296sxn94k6v00

everestgrp[.]exploit[.]im

everestgrp[.]thesecure[.]biz

everbe[.]airmail[.]cc

everest[.]airmail[.]cc

notopen[.]cock[.]li

eV3rbe[.]rape[.]lol

thunderhelp[.]airmail[.]cc

everestblog[.]airmail[.]cc

everestblog[.]cock[.]li

decryptors[.]xmpp[.]is

Raznatovic

hxxp://ransomed[.]biz

hxxp://t[.]me/s/ransomed_middleman

Tigers of Arkan

Raznatovic Channel

RaznatovicAdmin

hxxp://t[.]me/s/RaznatovicAdmin

Hriste Boze

hxxp://exposed[.]vc

Impotent

kmeta

kmetanaevropa

promise

creeper

pulpo

hanakobuta

hristeeboje

185[.]246[.]222[.]28

bankmanagers

ransomed[.]danwin1210[.]de

rfadmin[.]thesecure[.]biz

192D52C7C18F3D2693ED2453E64C53EC0CCF0

255AB2291F019B65BA84442B313C410DE132E59

ransomedSec

HristeeBoje

HanaKobuta

impotent[.]thesecure[.]biz

Mariamagdalena1337[.]mailfence[.]com

209[.]141[.]58[.]150

hxxp://rinse-right[.]com

hxxp://rancorpbr[.]com

hxxp://rancorp[.]net

hxxp://ransom-market[.]com

hxxp://ransomedtools[.]online

hxxp://pennywiseretail[.]com

hxxp://rancorpav[.]com

hxxp://openrangemgmt[.]com

hxxp://selectwindows[.]ca - Email: rancorp@shaw[.]ca

hxxp://preferredloansla[.]com

hxxp://rancorpgroup[.]com

blackforums[.]net@gmail[.]com

hxxp://flighthk[.]com

rifkyrev98[.]gmail[.]com

hxxp://worlddating[.]xyz

hxxp://orbpanel[.]xyz

hxxp://permanawfx[.]xyz

hxxp://free-mail[.]xyz

hxxp://slinku[.]xyz

hxxp://pressfly[.]online

hxxp://redpay[.]online

hxxp://omanexpress[.]xyz

hxxp://accounttelekom[.]xyz

hxxp://point-teleko[.]xyz

hxxp://telekobalance[.]xyz

hxxp://omandhl[.]xyz

Leading Company in Digital Peace Tax

hxxp://blackforums[.]net

hxxp://tulach[.]cc

Teodor Iliev

MAGADANS

#МълчаниетоСвърши

#НиеСмеСилата

#ВъзмездиетоИдва

State Agency for Digital Peace