Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Yurei

None

Victims
3
 
First Discovered
2025-09-05
victim
Last Discovered
2025-09-09
victim
Inactive Since
225
days
Avg Delay
N/A
attack→claim
Infostealer
0.0%
victims with domain

View Victims on World Map

View group statistics

Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Yurei Blog No 2025-10-12 12:30:42 fewcriet5rhoy66k6c4cyvb2pqrblxtx4mekj3s5l4jjt4t4kn4vheyd.onion
Target (Available)
Top 5 Activity Sectors
  • Energy 1
Top 5 Countries
  • LK flag Sri Lanka 1
  • NG flag Nigeria 1
  • CH flag Switzerland 1
Heatmap (Available)
Ransom Notes (0)

No ransom notes available.

Tools Used (Available)
This information is provided by Ransomware-Tool-Matrix
Discovery RMM Tools Defense Evasion Credential Theft OffSec Networking LOLBAS Exfiltration
Everything.exe
SoftPerfect NetScan
AnyDesk
Invoke-TheHash
NetExec
Rubeus
WinPEAS
PsExec
SDelete
Vulnerabilities Exploited (0)

No vulnerabilities exploited available.

TTPs Matrix (0)

No TTPs available.

Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (0)

No IoCs available for this group.

Victims (3)
Logo
noblecorp.net CH
Yurei
Discovered: 2025-09-09
Noble Corporation is a leading industrial insulation and materials supply company based in India, re…
Logo
www.thepromisenig.com NG
Yurei
Discovered: 2025-09-08
The Promise Nigeria Ltd is a leading brand in Nigeria’s fast-food and catering industry, renowned fo…
Logo
www.midcity.lk LK
Yurei
Discovered: 2025-09-05
Midcity Marketing (Pvt) Ltd, Sri Lanka is a dominant force in the import, distribution, and marketin…