Inactive ransomware operator
← All groupsLeaktheanalyst
20 victims indexed · first seen 5 years ago · last activity 4 years ago
At a glance
- Status
- inactive
- First seen
- 5 years ago
- Last activity
- 4 years ago
- Onion sites
- 2 known endpoints
- Primary sector
- Media · 6 hits
About
Timeline
2 monthsTop sectors
MITRE ATT&CK
5 techniques · 4 tacticsTactics
Recent victims
Loading…
Onion infrastructure
2 known- http://leaktheanalyst.fireeye62c3da3fnosymmmcqcty7rl7cjucpbkzaz275a4qs5fgkzhad.onion
- http://leaktheanalyst.fireeye62c3da3fnosymmmcqcty7rl7cjucpbkzaz275a4qs5fgkzhad.onion/
Source
Updated 4 years agoData on this page is sourced from the group's own leak posts, cross-checked with public ransomware trackers (RansomLook, ransomware.live, RansomWatch), MITRE ATT&CK, and our own Tor and Telegram crawlers. This is a public observatory page — share freely.
Get alerted the next time Leaktheanalyst posts a victim.
Add Leaktheanalyst to your watchlist — Pro pings you within 5 minutes of any new Leaktheanalyst leak-site post, Telegram callout, or affiliate-rebrand inference.

