NightSkyRansom

NightSky RaaS Log4Shell CVE-2021-44228. nightsky.cyou+Tor. YouTube guide in ransom note. DEV-0401 China APT.

Threat Profile
Type Ransomware
Programming LanguageC++
C2 ProtocolHTTPS/Tor
First Seen2021
Targets Kuresel Kurumsal
Purpose / Capabilities
  • ransomware

C2 Servers 1

Address Port Protocol Status Action
contact.nightsky.cyou
443 HTTPS INACTIVE

⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.

Research Reports (1)

Critical

NightSky Ransomware -- nightsky.cyou İletişim, YouTube Dark Web Tutorial Notu, .onion C2 | Kritik

NightSky 9.7MB. contact.nightsky.cyou. IEUser Desktop nightsky.bin PDB. YouTube dark web tutorial fidye notu. Tor .onion.

Read Report →