Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Reynolds

| RaaS

Reynolds is a ransomware family first identified in early 2026, notable for embedding BYOVD (Bring Your Own Vulnerable Driver) defense evasion by exploiting CVE-2025-68947 to terminate security software before encrypting files, initially attributed to Black Basta and considered attractive to RaaS affiliates.

Victims
1
 
First Discovered
2026-02-11
victim
Last Discovered
2026-02-11
victim
Inactive Since
91
days
Avg Delay
90
days
Infostealer
0.0%
victims with domain
Countries
1
hit
View Victims on World Map View Group Statistics
Attack Velocity — Last 12 months
Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Reynolds Yes 2026-05-13T12:10:25 NGINX nginx 1.18.0 bs2tlg32pfjwmclm22cyngqmoo24cdlhfxzbruwrdaxumisfeory32qd.onion
Target
Top 5 Activity Sectors
  • Business Services 1
Top 5 Countries
  • US flag United States 1
Heatmap
Ransom Notes (1)
YARA Rules (1)
Indicators of Compromise (IoCs) (1)
tox 1
Type IOC
tox 6F7831EBB5EEB933275BD6F4B4AA888918E9B7E40454A477CADDE7EE02461153D3B77AE50798
Victims (1)
Logo
falconmgt.com US
Reynolds
Discovered: 2026-02-11 (3mo ago)  ·  Attack est.: 2025-11-13
Falcon Management Corp. was founded in 1991. The company's line of business includes providing finan…