Security firm Elliptic says much can be learned from studying how the REvil ransomware gang conducted its operations. The REvil gang was willing to negotiate the size of the ransom it demanded as well as the payment price and manner of payment. The security firm says these details could potentially help law enforcement officials and others follow the money in ransomware attacks and potentially freeze the funds or identify the individuals behind the attacks. In the case study, the company monitored the wallets used to receive a ransom from one victim.”]
Source: https://www.cuinfosecurity.com/case-study-revil-ransom-negotiation-a-17106