Cl0p2
Cl0p TA505 Russia Linux ELF. inst.cc+rsv-box.com+support-mult.com C2. 62-char Tor onion. MOVEit CVE-2023-34362. VMware ESXi.
Threat Profile
Type
Ransomware
Programming LanguageC
C2 ProtocolHTTPS/Tor
First Seen2019
Targets
Küresel Kurumsal
Purpose / Capabilities
- ransomware
C2 Servers 3
1 Active
| Address | Port | Protocol | Status | Action |
|---|---|---|---|---|
inst.cc
|
443 | HTTPS | Active | |
rsv-box.com
|
443 | HTTPS | INACTIVE | |
support-mult.com
|
443 | HTTPS | INACTIVE |
⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.
Research Reports (1)
Cl0p Linux ELF -- 6v4q5w7di74grj Tor Onion C2, inst.cc+rsv-box.com+support-mult.com | Kritik
Cl0p Linux ELF 1.25MB. 6v4q5w7di74grj2vtmikzgx2tnq5eagyg2cubpcnqrvvee2ijpmprzqd.onion Tor. inst.cc rsv-box.com support-mult.com.
Read Report →