Putinkrab

Threat Actor updated 2 months ago (2024-07-20T08:17:39.022Z)
Download STIX
Preview STIX
Putinkrab, a threat actor, has been identified as a significant figure in the cybercrime world. Known for his involvement in ransomware operations, Putinkrab first emerged on Russian cybercrime forums such as XSS, Exploit, and UFOLabs in 2019, selling advanced ransomware source code written in C language. His expertise didn't just materialize; it was clear that he had prior experience with developing and using successful ransomware strains. Throughout the summer of 2019, Putinkrab updated the community about new features and evasion techniques being added to his ransomware strain, demonstrating his confidence in the potential profitability of his code. In May 2024, a joint operation by the FBI, UK National Crime Agency, and Europol led to the unmasking of Putinkrab's identity. The individual behind the pseudonym was revealed to be Dimitry Yuryevich Khoroshev, a 31-year-old from Voronezh, Russia. Known by multiple aliases including 'LockBitSupp' and 'LockBit', Khoroshev was charged by a 26-count indictment returned by a grand jury in the District of New Jersey, marking a significant breakthrough in the fight against cybercrime. Despite the identification and sanctions against Khoroshev, the threat posed by the ransomware code developed by Putinkrab remains. His belief in his ransomware code as a "game-changer" and "huge money machine" underscores the potential danger it poses to cybersecurity. The fact that Khoroshev offered to work for a share of the ransoms, indicating a business model where the ransomware could be used by others, further amplifies this threat. This case underlines the ongoing challenges faced by law enforcement and security agencies in tackling sophisticated cybercriminals and their evolving tactics.
Description last updated: 2024-07-20T08:15:53.407Z
What's your take? (Question 1 of 2)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Lockbit
2
LockBit is a prominent malware that has been causing havoc in the cyber world. It is a ransomware, a type of malicious software designed to exploit and damage systems, often infiltrating through suspicious downloads, emails, or websites. Once inside, it can steal personal information, disrupt operat
LockBitSupp
2
LockBitSupp, also known as Dmitry Yuryevich Khoroshev, is a threat actor who has been identified as the creator and operator of one of the most prolific ransomware variants known as LockBit. Based in Voronezh, Russia, Khoroshev allegedly began developing LockBit as early as September 2019 and contin
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Ransomware
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Putinkrab Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Securityaffairs
2 months ago
Russian nationals plead guilty to participating in the LockBit ransomware group
Securityaffairs
2 months ago
Russian nationals plead guilty to participating in the LockBit ransomware group
Securityaffairs
3 months ago
FBI obtained 7,000 LockBit decryption keys, victims should contact feds to get support
Krebs on Security
4 months ago
How Did Authorities Identify the Alleged Lockbit Boss?
Flashpoint
4 months ago
COURT DOC: U.S. Charges Russian National with Developing and Operating LockBit Ransomware