Vanilla Tempest
Also known as Rapid Brigantine, Vice Society, Vice Spider, DEV-0832, INC Ransomware
Reports
7
First seen
Nov 1
Last seen
Jun 16
Motivation
financial, financially motivated
Targeting
Sectors
other ×5
Top ATT&CK techniques
T1486 Data Encrypted for Impact ×4T1566.002 Phishing: Spearphishing Link ×4T1027 Obfuscated Files or Information ×3T1190 Exploit Public-Facing Application ×2T1204 User Execution ×2T1140 Deobfuscate/Decode Files or Information ×2T1036.005 Match Legitimate Name or Location ×2T1036 Masquerading ×2T1566 Phishing ×2T1547.001 Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder ×2T1070.001 Indicator Removal: Clear Windows Event Logs ×2T1598 Phishing for Information ×2
Indicators
url ×65filename ×30hash_sha256 ×11ip_v4 ×8domain ×6cve ×3hash_sha1 ×2
Indicator values are available on Pro and via the API.
Associated CVEs
Recent reports
High