Groove x RAMP : The relation between Groove, Babuk, Payload.bin, RAMP, and BlackMatter
Hotsauce | S2W TALON
The relation graph of Groove, Babuk, Payload.bin, RAMP, and BlackMatter
Groove’s BTC, XMR and ETH == RAMP
- BTC: 1EZhsp26j4ZfDfKyXpweUtGgrs3fnpPCEd
- ETH: 0xF6a4906fA254ce0e9175E2C3418Dde999b99ed1F
- XMR: 47GyLQAPw4Ee3WVTgCtSxwNcRinsEm3jdSX8FH4DLbjb5t79CJDxrK9gMNVJNDfCLEjhdJZyWCPBG5CkiTnGqMvnPgKTTV3
Conclusion
- In this post, we mentioned the fact of Groove and RAMP using the same cryptocurrency wallet address that was mentioned on their leak sites.
- It is highly probable that the operator of RAMP, Groove and BlackMatter are the same or the same group.
- We need to keep monitoring their activities to track the cryptocurrency wallet address that was mentioned by these ransomware.
Related articles by S2W TALON
- Homepage: https://www.s2wlab.com
- Facebook: https://www.facebook.com/S2WLAB/
- Twitter: https://twitter.com/s2wlab