Sodinokibi, also known as REvil, is a ransomware program that first appeared in April. Its developers provide the program to other cybercriminals in exchange for a cut of the ransom money paid by victims. Researchers from McAfee have tracked the bitcoin payments made by victims of the program. The developers get a 30% or 40% cut from each payment after its passed through a bitcoin mixer that has the role of obfuscating transactions and making it harder for investigators to discover the final cash-out wallet.”]