stealthmole-rm-search
Search ransomware leak information using StealthMole Ransomware Monitoring API.
stealthmole-rm-search [profile=PROFILE] [query=QUERY] [limit=LIMIT] [order=ORDER]
- profile=PROFILE
- Optional. StealthMole connect profile code
- query=QUERY
- Optional. Search keyword (supports torurl: and domain: indicators)
- limit=LIMIT
- Optional. Maximum number of results to retrieve (default: 50)
- order=ORDER
- Optional. Sort direction (asc, desc). Default: desc
Output Fields
| Field | Type | Name | Description |
|---|---|---|---|
| _time | Date | Time | e.g. 2026-03-27 13:27:33+0900 |
| profile | String | Profile | Connect profile code of StealthMole |
| id | String | ID | e.g. 760912ba-2995-11f1-925d-88366cfde893 |
| victim | String | Victim | e.g. Acme Corp |
| threat_actor | String | Threat Actor | e.g. Crypto24 |
| proof_url | String | Proof URL | e.g. https://a1b2c3d4e5f6.onion |
| website | String | Website | e.g. example.com |
| country | String | Country | e.g. South Korea |
| sector | String | Sector | e.g. IT Services |