ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool Babuk Locker

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Babuk Locker

NamesBabuk Locker
Babyk
Vasa Locker
CategoryMalware
TypeRansomware, Big Game Hunting
Description(Cyberint) Babuk, also known as 'Babuk Locker', 'Babyk' and initially 'Vasa Locker', is a ransomware threat utilizing big-game hunter tactics to 'steal, encrypt and leak' victim data in an attempt to extort payments of reportedly up to USD 85,000 in Bitcoin (BTC).
Information<https://blog.cyberint.com/babuk-locker>
<https://chuongdong.com/reverse%20engineering/2021/01/03/BabukRansomware/>
<https://www.bleepingcomputer.com/news/security/babuk-locker-is-the-first-new-enterprise-ransomware-of-2021/>
<https://www.mcafee.com/blogs/other-blogs/mcafee-labs/babuk-ransomware/>
<https://therecord.media/builder-for-babuk-locker-ransomware-leaked-online/>
<https://www.bleepingcomputer.com/news/security/leaked-babuk-locker-ransomware-builder-used-in-new-attacks/>
<https://www.bleepingcomputer.com/news/security/babuk-ransomware-is-back-uses-new-version-on-corporate-networks/>
<https://darkfeed.io/babukhak-13444/>
<https://www.mcafee.com/blogs/other-blogs/mcafee-labs/babuk-biting-off-more-than-they-could-chew-by-aiming-to-encrypt-vm-and-nix-systems/>

Last change to this tool card: 09 August 2021

Download this tool card in JSON format

Previous: Babar
Next: BABYMETAL

All groups using tool Babuk Locker

ChangedNameCountryObserved

APT groups

 Indrik SpiderRussia2014-Jun 2021 HOTX

1 group listed (1 APT, 0 other, 0 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key