Clop
MITRE G0676
Reports
7
First seen
Oct 15
Last seen
Jun 5
Motivation
financial, ransomware, cybercrime
Top ATT&CK techniques
T1486 Data Encrypted for Impact ×6T1190 Exploit Public-Facing Application ×5T1566 Phishing ×4T1498 Network Denial of Service ×3T1133 External Remote Services ×2T1547 Boot or Logon Autostart Execution ×2T1078 Valid Accounts ×2T1021 Remote Services ×2T1005 Data from Local System ×2T1567 Exfiltration Over Web Service ×2T1505 Server Software Component ×1T1566.002 Phishing: Spearphishing Link ×1
Indicators
cve ×18domain ×3filename ×1
Indicator values are available on Pro and via the API.
Associated CVEs
CVE-2020-12812 (exploited)CVE-2021-26829 (exploited)CVE-2021-35211 (exploited)CVE-2024-20353 (exploited)CVE-2024-20359 (exploited)CVE-2024-28995 (exploited)CVE-2024-40766 (exploited)CVE-2024-47575 (exploited)CVE-2024-50383 (exploited)CVE-2025-14174 (exploited)CVE-2025-20333 (exploited)CVE-2025-20362 (exploited)CVE-2025-27915 (exploited)CVE-2025-41244 (exploited)CVE-2025-43529 (exploited)CVE-2025-49844CVE-2025-55182 (exploited)CVE-2025-59718 (exploited)CVE-2025-59719 (exploited)CVE-2025-61882 (exploited)
Recent reports
High