Ransomware - DarkVault

DarkVault (Active)
Aliases
Dark Vault Ransom
Decryptor Available
No
Description

DarkVault is a self-proclaimed exclusive online community and ransomware operation that performs many illegal activities, including bomb threats, swatting, doxing, website defacing, malware creation, scams, spam, and various amounts of fraud. Basically, it's probably a few individuals engaged in a bunch of cybercrimes. There have been reports of DarkVault being LockBit, or affiliated with LockBit, because their data leak site (DLS) mimics LockBit 3.0's. However, just because the DLS is copied doesn't mean they are the same group. DarkVault is one of several groups that have copied LockBit 3.0's DLS (e.g. Dispossessor).

The individual(s) behind DarkVault have two pages; one for posting alleged victims of what we assume are ransomware attacks or data exfiltration from breaches, and another that explains their illegal activities. After reviewing their DLSs and Telegram, it's difficult to make any further determinations because, aside from the posted victims, everything else is relatively empty. Furthermore, we don't have a ransomware sample or any indication that this is truly a group performing ransomware attacks. Once we have any updates on DarkVault's behavior, we will post them. What you currently see is taken from their DLSs.

Ransomware Type
Data Broker
First Seen
Threat Actors
Media type
Actor
Individual
criminaldo
Individual
Neroces
Extortion Types
Blackmail
Free Data Leaks
Swatting
Website Defacing
Medio
Identificador
Keybase
Keybase
Telegram
Telegram
Telegram
Crypto Wallets
Blockchain Type
Crypto Wallet
BTC
bc1qpcee40tr99xr5rpgwax808hd24fuza7ft75ced
Industry Sector País Extortion Date Amount (USD)
Retail & WholesaleUnited States
Professional ServicesUnited States
Information TechnologyUnited States
InsuranceUnited States
Information TechnologyUnited States
TelecommunicationsSri Lanka
Fashion & TextilesIndia
Information TechnologyIndia
Healthcare & MedicineUnited Kingdom
HospitalitySaudi Arabia
References & Publications