stealthmole-rm-search
Search ransomware leak information using StealthMole Ransomware Monitoring API.
stealthmole-rm-search [profile=PROFILE] [query=QUERY] [limit=LIMIT] [order=ORDER]
- profile=PROFILE
- Optional. StealthMole connect profile code
- query=QUERY
- Optional. Search keyword (supports torurl: and domain: indicators)
- limit=LIMIT
- Optional. Maximum number of results to retrieve (default: 50)
- order=ORDER
- Optional. Sort direction (asc, desc)
Output Fields
| Field | Type | Name | Description |
|---|---|---|---|
| _time | Date | Time | Detected time |
| id | String | ID | Management ID |
| victim | String | Victim | Name of victim |
| threat_actor | String | Threat Actor | Name of ransomware group |
| proof_url | String | Proof URL | Ransomware site URL of a proof |
| website | String | Website | Website of victim |
| country | String | Country | Country of victim |
| sector | String | Sector | Industry of victim |