{
	"id": "e6c8076c-f688-414f-9055-dd6dd356d60c",
	"created_at": "2026-04-06T00:22:25.935815Z",
	"updated_at": "2026-04-10T03:22:13.281439Z",
	"deleted_at": null,
	"sha1_hash": "c7a876438c7516d1786e40566a6409309b435e39",
	"title": "LevelBlue - Open Threat Exchange",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 349195,
	"plain_text": "LevelBlue - Open Threat Exchange\r\nBy CyberHunter_NL\r\nArchived: 2026-04-05 22:57:33 UTC\r\n841 Subscribers\r\nhttps://otx.alienvault.com/browse/pulses?q=tag:erebus\r\nPage 1 of 4\n\nThreat Research | FireEye Inc\r\nFind out more about FireEye.com, the world's leading cyber security company, which provides security services to\r\nmore than 1.5 million customers across the globe, and offers a wide range of products and services.\r\nhttps://otx.alienvault.com/browse/pulses?q=tag:erebus\r\nPage 2 of 4\n\n17 Subscribers\r\nErebus Resurfaces as Linux Ransomware\r\nFileHash-MD5: 1 | FileHash-SHA256: 2 | FilePath: 2 | URL: 2 | YARA: 1 | Hostname: 8\r\nOn June 10, South Korean web hosting company NAYANA was hit by Erebus ransomware (detected by Trend\r\nMicro as RANSOM_ELFEREBUS.A), infecting 153 Linux servers and over 3,400 business websites the\r\ncompany hosts.\r\n374,021 Subscribers\r\nErebus ransomware\r\nOn June 10, 2017, a number of Linux web servers and backup servers of domestic famous web hosting companies\r\nwere infected with Erebus Ransomware and it was reported that key files in the server were encrypted. As a result,\r\nhttps://otx.alienvault.com/browse/pulses?q=tag:erebus\r\nPage 3 of 4\n\nsome sites hosted by the vendor can not be accessed normally.\r\n745 Subscribers\r\nSource: https://otx.alienvault.com/browse/pulses?q=tag:erebus\r\nhttps://otx.alienvault.com/browse/pulses?q=tag:erebus\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://otx.alienvault.com/browse/pulses?q=tag:erebus"
	],
	"report_names": [
		"pulses?q=tag:erebus"
	],
	"threat_actors": [],
	"ts_created_at": 1775434945,
	"ts_updated_at": 1775791333,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/c7a876438c7516d1786e40566a6409309b435e39.pdf",
		"text": "https://archive.orkl.eu/c7a876438c7516d1786e40566a6409309b435e39.txt",
		"img": "https://archive.orkl.eu/c7a876438c7516d1786e40566a6409309b435e39.jpg"
	}
}