ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool Babuk Locker

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Babuk Locker

NamesBabuk Locker
Babyk
Vasa Locker
CategoryMalware
TypeRansomware, Big Game Hunting
Description(Cyberint) Babuk, also known as 'Babuk Locker', 'Babyk' and initially 'Vasa Locker', is a ransomware threat utilizing big-game hunter tactics to 'steal, encrypt and leak' victim data in an attempt to extort payments of reportedly up to USD 85,000 in Bitcoin (BTC).
Information<https://blog.cyberint.com/babuk-locker>
<https://chuongdong.com/reverse%20engineering/2021/01/03/BabukRansomware/>
<https://www.bleepingcomputer.com/news/security/babuk-locker-is-the-first-new-enterprise-ransomware-of-2021/>
<https://www.mcafee.com/blogs/other-blogs/mcafee-labs/babuk-ransomware/>
<https://therecord.media/builder-for-babuk-locker-ransomware-leaked-online/>
<https://www.bleepingcomputer.com/news/security/leaked-babuk-locker-ransomware-builder-used-in-new-attacks/>
<https://www.bleepingcomputer.com/news/security/babuk-ransomware-is-back-uses-new-version-on-corporate-networks/>
<https://darkfeed.io/babukhak-13444/>
<https://www.mcafee.com/blogs/other-blogs/mcafee-labs/babuk-biting-off-more-than-they-could-chew-by-aiming-to-encrypt-vm-and-nix-systems/>
<https://medium.com/s2wlab/blackmatter-x-babuk-using-the-same-web-server-for-sharing-leaked-files-d01c20a74751>
<https://www.bleepingcomputer.com/news/security/babuk-ransomwares-full-source-code-leaked-on-hacker-forum/>
<https://www.advintel.io/post/groove-vs-babuk-groove-ransom-manifesto-ramp-underground-platform-secret-inner-workings>
<https://www.bleepingcomputer.com/news/security/babuk-ransomware-decryptor-released-to-recover-files-for-free/>
Malpedia<https://malpedia.caad.fkie.fraunhofer.de/details/win.babuk>
<https://malpedia.caad.fkie.fraunhofer.de/details/elf.babuk>
Playbook<https://www.nomoreransom.org/uploads/Avast_how-to-guide.pdf>

Last change to this tool card: 10 February 2022

Download this tool card in JSON format

All groups using tool Babuk Locker

ChangedNameCountryObserved

APT groups

 Indrik SpiderRussia2014-Dec 2021X
 Tortilla[Unknown]2021 

2 groups listed (2 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]