Vanilla Tempest

Also known as Rapid Brigantine, Vice Society, Vice Spider, DEV-0832, INC Ransomware
Reports
7
First seen
Nov 1
Last seen
Jun 16
Motivation
financial, financially motivated

Targeting

Sectors
other ×5

Top ATT&CK techniques

T1486 Data Encrypted for Impact ×4T1566.002 Phishing: Spearphishing Link ×4T1027 Obfuscated Files or Information ×3T1190 Exploit Public-Facing Application ×2T1204 User Execution ×2T1140 Deobfuscate/Decode Files or Information ×2T1036.005 Match Legitimate Name or Location ×2T1036 Masquerading ×2T1566 Phishing ×2T1547.001 Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder ×2T1070.001 Indicator Removal: Clear Windows Event Logs ×2T1598 Phishing for Information ×2

Indicators

url ×65filename ×30hash_sha256 ×11ip_v4 ×8domain ×6cve ×3hash_sha1 ×2

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.