IMN Crew is a rising ransomware threat group. Reporting cited in the content states that it has more recently begun its ransomware campaigns, and a new ransomware operation named Imn Crew was reported as having launched last month. Its dark web leak site was reported to list eight victims. The group is identified in ransomware ecosystem tracking as one of several newer ransomware actors emerging amid instability following disruption to major RaaS operations. No additional high-confidence details on targeting, tooling, techniques, or attribution are directly provided in the content. Known alias in the provided content: imn_crew.
Mallory correlates actor tradecraft and target patterns against your stack, your sector, and your geography. See overlap before they land.
2 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
Newly launched ransomware/extortion operation with an active leak site and initial victim set.
Rising ransomware threat group newly active in campaigns (no specific tooling/CVEs detailed in this content).
Match sector + geo + tech-stack targeting against your real footprint.
Every observed MITRE ATT&CK technique, grouped by tactic.
Families this actor is known to deploy, with IOCs and behavior.
CVEs this actor has used in known campaigns.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Domains, IPs, and hashes tied to this actor, refreshed continuously.