Bl00dy Ransomware | WatchGuard Technologies

Aliases

Bl00dy Cult

Description

This entry is under construction. However, we have included some details below.

Ransomware Type

Crypto-Ransomware

Data Broker

First Seen

Luglio 2022

Lineage

LockBit 3.0

Threat Actors

Tipo

Actor

Individual

anongod

Extortion Links

Medio

Link

https://t.me/bl00dy_Ransomware_Gang

https://t.me/bl00dy_ransomware_Gang_Backup

https://t.me/+W-vMALJT0DgxMmZk

Twitter | X

https://twitter.com/BLOODY48139604

Extortion Types

Blackmail

Direct Extortion

Double Extortion

Employ Hitman

Extortion Amounts

Amount

$1,500

$2,000

$5,000

$15,000

Communication(8)

Medio

Identificativo

Email

bloody.ransomware.supportt@armormail.net

Email

decrypt.support@privyonline.com

Email

filedecryptionsupport@msgsafe.io

Email

fimaribahundqf@gmx.com

@bl00dyAdmin

@Bl00dy_Admin

Tox

E3213A199CDA7618AC22486EFECBD9F8E049AC36094D56AC1BFBE67EB9C3CF2352CAE9EBD35F

Tox

7D8796EB86CBF29F53F8A8447EABAF310ED898D9DEFF97AE09C1864C2A6B3B14ED8F82AE9B9D

Encryption

Type

Hybrid

Files

AES-256

Key

RSA-2048

Crypto Wallets

Blockchain Type

Crypto Wallet

BTC

bc1q81gnw0relr0msf0570vngkctkyqateen2ypar

File Extension

<file name>.<file extension>.bloody

<file name>.<file extension>.DRTTY

Ransom Note Name

How To Restore Your Files.txt

Read_Instructions_To_Decrypt.txt

Known Victims(26)

Industry Sector	Paese	Extortion Date	Amount (USD)
Healthcare & Medicine	United States	2022-05-23	$5,000
Healthcare & Medicine	United States	2022-08-07
Healthcare & Medicine	United States	2022-08-07
Information Technology	United States	2022-08-02
Religion	United States	2022-08-28
Fashion & Textiles	United States	2022-09-05
Media & Marketing	Russia	2022-09-22
Professional Services	Ukraine	2022-09-26
Aerospace & Aviation	Iran	2022-12-08	$2,000
Manufacturing	Italy	2022-12-08
Food & Beverage	Russia	2022-12-11	$1,500
Professional Services	United States	2022-12-25
Unknown	Unknown	2023-01-02
Education	United States	2023-05-01
Education	United States	2023-05-01	$15,000
Education	United States	2023-05-01
Education	United States	2023-05-01
Education	United States	2023-05-05
Education	India	2023-05-28
Education	United Kingdom	2023-06-16
Education	United Kingdom	2023-06-16
Education	Botswana	2023-06-16
Healthcare & Medicine	United States	2024-02-15
Legal	United States	2024-04-19
Banking & Finance	United States	2024-10-24
Legal	United States	2024-12-23

References & Publications(6)

DataBreaches.net: Leaked LockBit 3.0 builder used by ‘Bl00dy’ ransomware gang in attacks

DataBreaches.net: NC: ‘Ransomware cult’ claims to have hacked two local schools

DataBreaches.net: New York medical practices hit by “Bl00dy Ransomware Gang”

PCrisk: Bl00dy Ransomware

Twitter | X: @azalsecurity - anongod Bl00dy RAMP Post

Vladyslav Radetsky: .bl00dy ransomware [EN]

Ransomware - Bl00dy