{
	"id": "b6926b68-b6c9-465c-b017-c3a378fa54ae",
	"created_at": "2026-04-06T00:11:46.9009Z",
	"updated_at": "2026-04-10T03:20:18.93672Z",
	"deleted_at": null,
	"sha1_hash": "82e507e562b3ecefe95b7b175b4e607aa93e6c33",
	"title": "Binary Defense",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 63007,
	"plain_text": "Binary Defense\r\nArchived: 2026-04-05 18:24:46 UTC\r\nWe use cookies to help you navigate efficiently and perform certain functions. You will find detailed information\r\nabout all cookies under each consent category below.\r\nThe cookies that are categorised as \"Necessary\" are stored on your browser as they are essential for enabling the\r\nbasic functionalities of the site. ... \r\nFor more information on how Google's third-party cookies operate and handle your data, see: Google Privacy\r\nPolicy\r\nCookie\r\nCRAFT_CSRF_TOKEN\r\nDuration\r\nsession\r\nDescription\r\nThis cookie is set by the provider Craft CMS. This cookie is used for the purpose of website security that is\r\nCross-Site-Request forgery prevention whenever a form is used.\r\nCookie\r\nVISITOR_PRIVACY_METADATA\r\nDuration\r\n6 months\r\nDescription\r\nYouTube sets this cookie to store the user's cookie consent state for the current domain.\r\nCookie\r\n__cf_bm\r\nDuration\r\n1 hour\r\nDescription\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 1 of 9\n\nThis cookie, set by Cloudflare, is used to support Cloudflare Bot Management.\r\nCookie\r\n_cfuvid\r\nDuration\r\nsession\r\nDescription\r\nCloudflare sets this cookie to track users across sessions to optimize user experience by maintaining\r\nsession consistency and providing personalized services\r\nCookie\r\nPHPSESSID\r\nDuration\r\nsession\r\nDescription\r\nThis cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to\r\nmanage user sessions on the website. The cookie is a session cookie and will be deleted when all the\r\nbrowser windows are closed.\r\nCookie\r\ncookietest\r\nDuration\r\nsession\r\nDescription\r\nThe cookietest cookie is typically used to determine whether the user's browser accepts cookies, essential\r\nfor website functionality and user experience.\r\nCookie\r\ncookieyes-consent\r\nDuration\r\n1 year\r\nDescription\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 2 of 9\n\nCookieYes sets this cookie to remember users' consent preferences so that their preferences are respected\r\non subsequent visits to this site. It does not collect or store any personal information about the site visitors.\r\nCookie\r\nalert\r\nDuration\r\nsession\r\nDescription\r\nBinary Defense news alert bar. \r\nCookie\r\nrc::a\r\nDuration\r\nNever Expires\r\nDescription\r\nThis cookie is set by the Google recaptcha service to identify bots to protect the website against malicious\r\nspam attacks.\r\nCookie\r\nrc::c\r\nDuration\r\nsession\r\nDescription\r\nThis cookie is set by the Google recaptcha service to identify bots to protect the website against malicious\r\nspam attacks.\r\nCookie\r\nVISITOR_INFO1_LIVE\r\nDuration\r\n6 months\r\nDescription\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 3 of 9\n\nA cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player\r\ninterface.\r\nCookie\r\nli_gc\r\nDuration\r\n6 months\r\nDescription\r\nLinkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.\r\nCookie\r\nlidc\r\nDuration\r\n1 day\r\nDescription\r\nLinkedIn sets the lidc cookie to facilitate data center selection.\r\nCookie\r\nslireg\r\nDuration\r\n7 days\r\nDescription\r\n Identifies the Salesloft server region where the Team's data is stored.\r\nCookie\r\nsliguid\r\nDuration\r\n1 year\r\nDescription\r\nProvides an anonymous user identifier across multiple requests.\r\nCookie\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 4 of 9\n\nslirequested\r\nDuration\r\n1 year\r\nDescription\r\nSet for every incoming request after the sliguid cookie is confirmed against a central server.\r\nCookie\r\n__Secure-YEC\r\nDuration\r\npast\r\nDescription\r\nYouTube sets this cookie to stores the user's video player preferences using embedded YouTube video\r\nCookie\r\nsite_identity\r\nDuration\r\n1 year\r\nDescription\r\nSalesLoft Site Identity Cookie\r\nCookie\r\nYSC\r\nDuration\r\nsession\r\nDescription\r\nYSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.\r\nCookie\r\n_ga_*\r\nDuration\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 5 of 9\n\n1 year 1 month 4 days\r\nDescription\r\nGoogle Analytics sets this cookie to store and count page views.\r\nCookie\r\n_ga\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nGoogle Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the\r\nsite's analytics report. The cookie stores information anonymously and assigns a randomly generated\r\nnumber to recognise unique visitors.\r\nCookie\r\n__hstc\r\nDuration\r\n6 months\r\nDescription\r\nHubspot set this main cookie for tracking visitors. It contains the domain, initial timestamp (first visit), last\r\ntimestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent\r\nsession).\r\nCookie\r\nhubspotutk\r\nDuration\r\n6 months\r\nDescription\r\nHubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on\r\nform submission and used when deduplicating contacts.\r\nCookie\r\n__hssrc\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 6 of 9\n\nDuration\r\nsession\r\nDescription\r\nHubSpot cookie sets this cookie to determine if the visitor has restarted their browser. If this cookie does\r\nnot exist when HubSpot manages cookies, it is considered a new session.\r\nCookie\r\n__hssc\r\nDuration\r\n1 hour\r\nDescription\r\nHubSpot sets this cookie to keep track of sessions. This is used to determine if HubSpot should increment\r\nthe session number and timestamps in the __hstc cookie. It contains the domain, viewCount (which \r\nincrements with each pageview in a session), and session start timestamp.\r\nCookie\r\n_gcl_au\r\nDuration\r\n3 months\r\nDescription\r\nGoogle Tag Manager sets this cookie to experiment advertisement efficiency of websites using their\r\nservices.\r\nCookie\r\n__Secure-YNID\r\nDuration\r\n6 months\r\nDescription\r\nGoogle cookie used to protect user security and prevent fraud, especially during the login process.\r\nCookie\r\n__Secure-ROLLOUT_TOKEN\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 7 of 9\n\nDuration\r\n6 months\r\nDescription\r\nYouTube sets this cookie to manage feature rollout and experimentation. It helps Google control which\r\nnew features or interface changes are shown to users as part of testing and staged rollouts, ensuring\r\nconsistent experience for a given user during an experiment.\r\nCookie\r\n_rdt_uuid\r\nDuration\r\n3 months\r\nDescription\r\nReddit sets this cookie to build a profile of your interests and show you relevant ads.\r\nCookie\r\nbcookie\r\nDuration\r\n1 year\r\nDescription\r\nLinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.\r\nCookie\r\nmuc_ads\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nTwitter sets this cookie to collect user behaviour and interaction data to optimize the website.\r\nCookie\r\npersonalization_id\r\nDuration\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 8 of 9\n\n1 year 1 month 4 days\r\nDescription\r\nTwitter sets this cookie to integrate and share features for social media and also store information about\r\nhow the user uses the website, for tracking and targeting.\r\nCookie\r\ntest_cookie\r\nDuration\r\n15 minutes\r\nDescription\r\ndoubleclick.net sets this cookie to determine if the user's browser supports cookies.\r\nCookie\r\n_twpid\r\nDuration\r\n1 year 24 days\r\nDescription\r\nTwitter's advertising pixel\r\nCookie\r\nIDE\r\nDuration\r\n1 year 24 days\r\nDescription\r\nGoogle DoubleClick IDE cookies store information about how the user uses the website to present them\r\nwith relevant ads according to the user profile.\r\nSource: https://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nhttps://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/\r\nPage 9 of 9",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://www.binarydefense.com/threat_watch/new-ransomware-medusalocker/"
	],
	"report_names": [
		"new-ransomware-medusalocker"
	],
	"threat_actors": [],
	"ts_created_at": 1775434306,
	"ts_updated_at": 1775791218,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/82e507e562b3ecefe95b7b175b4e607aa93e6c33.pdf",
		"text": "https://archive.orkl.eu/82e507e562b3ecefe95b7b175b4e607aa93e6c33.txt",
		"img": "https://archive.orkl.eu/82e507e562b3ecefe95b7b175b4e607aa93e6c33.jpg"
	}
}