cl0p

MITRE G0080Also known as TA505, Lace Tempest
Reports
3
First seen
Jul 7
Last seen
Dec 19
Motivation
financial, ransomware

Targeting

Sectors
technology ×1

Top ATT&CK techniques

T1190 Exploit Public-Facing Application ×3T1505.003 Web Shell ×2T1059.001 PowerShell ×2T1070.001 Clear Windows Event Logs ×1T1082 System Information Discovery ×1T1087 Account Discovery ×1T1041 Exfiltration Over C2 Channel ×1T1562.001 Disable or Modify Tools ×1T1135 Network Share Discovery ×1T1005 Data from Local System ×1T1105 Ingress Tool Transfer ×1T1059.003 Windows Command Shell ×1

Indicators

filename ×7cve ×5ip_v4 ×3url ×3hash_sha256 ×1

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.