185.25.51.173-20220226.json (2025)

The data was leaked by a pro-Ukrainian insider in February 2022 following the Conti Group's public support for the Russian invasion of Ukraine.

The files document real-time conversations between members of the Wizard Spider group (the operators of Conti). 185.25.51.173-20220226.json

The filename prefix 185.25.51.173 is the IP address of the server where the chat logs were hosted or intercepted. 🔍 Key Features of the Data The data was leaked by a pro-Ukrainian insider

The string refers to a specific log file from the Conti ransomware leaks (also known as the "ContiLeaks"). 185.25.51.173-20220226.json