Ransomware.live BrainCipher

Braincipher

Brain Cipher emerged in July 2024. Both Windows and Linux variants are available. Brain Cipher using the leaked build of LockBit Black for their operations. The group suspected to have exploited CVE-2023-28252 (Microsoft Windows CLFS Driver Privilege Escalation Vulnerability). The Ransom demand ranges from $150,000 to $1,00,0000. Demand to be paid with Monero (XMR) cryptocurrency. In 2025, they have shifted their new Negotiation portal to new server with vanity TOR Domain starting with 'brain'.

Victims

35

First Discovered

victim

2024-07-01

Last Discovered

victim

2025-05-05

Avg Delay

between attack and claim

43.5 days

Infostealer

for victim with domain

32.3%

View Victims on World Map

View group statistics

Known Locations (8)

Title	Available	Last Visit	FQDN
Brain Cipher Leaks	Yes	2025-07-12 04:31:24	`vkvsgl7lhipjirmz6j5ubp3w3bwvxgcdbpi3fsbqngfynetqtw4w5hyd.onion`
Brain Cipher Client Area	No	2025-06-01 21:18:17	`mybmtbgd7aprdnw2ekxht5qap5daam2wch25coqerrq2zdioanob34ad.onion`
BrainCipher Client Area	Yes	2025-07-12 04:32:40	`brain4zoadgr6clxecixffvxjsw43cflyprnpfeak72nfh664kqqriyd.onion`
BrainCipher Client Area	No	2025-06-17 10:30:09	`77nrxelcwh47yikvpaz2rvtsten4sen2elybo5r5st6wlxsbitv255qd.onion`
BrainCipher Client Area	No	2025-06-17 10:30:16	`p6wmotxzvg34tdmpwm4beqgrcyp5iys43snkccsahnw74la3k3xx6pad.onion`
BrainCipher Storage	Yes	2025-07-12 04:33:42	`zktnif5vckhmz5tyrukp5bamatbfhkxjnb23rspsanyzywcrx3bvtqad.onion`
Not Found	Yes	2025-07-12 04:34:43	`4ldgw2wuidqu5ef3rzx4byonf3y7rdnh43jiw2z4sbtjiwic6gkov7yd.onion`
BrainCipher Storage	No	2025-06-17 10:30:19	`cuuhrxbg52c5agytmtjpwfu7mrs4xtaitc4mukkiy2kqdxeqbcmuhaid.onion`

Target (Available)

Heatmap (Available)

Ransom Notes (2)

Tools Used (Not Available)

Vulnerabilities Exploited (0)

TTPs Matrix (4)

This information is provided by Crocodyli & Ransomware.live
Execution	Defense Evasion	Discovery	Impact
User Execution	Impair Defenses: Disable or Modify Tools	File and Directory Discovery	Data Encrypted for Impact
	Indicator Removal: File Deletion

Negotiation Chats (0)

YARA Rules (0)

Indicators of Compromise (IoCs) (15)

EMAIL 3 MD5 12

Type	IOC
`email`	`ibrain.support@cyberfear.com`
`email`	`brain.dataleak@cyberfear.com`
`email`	`brain.decrypt@cyberfear.com`
`md5`	`523c501118ef5d7957ce54aee86d9b1d`
`md5`	`9c5698924d4d1881efaf88651a304cb3`
`md5`	`448f1796fe8de02194b21c0715e0a5f6`
`md5`	`b32a8951fc4c2e4c2d63d17200ca0032`
`md5`	`714b31629c37dee57038ca4e52ef65ac`
`md5`	`71c109f3bf4da2fc0173b9bcff07e979`
`md5`	`41050b2b9f619cdd9916e3bdd5b9f2f9`
`md5`	`0da1f4ede654e83241eaad7719a708a0`
`md5`	`f94d17b5f232e9cfd2255ca9823cb18a`
`md5`	`8b3a45ebb7f2331e90ac57a2a20536fd`
`md5`	`8dbd57b042bc63b9ecdc9e3e5506ce85`
`md5`	`a0efa7fb6dff1e035510ec1f42e083e4`

Victims (35)

Pulmonary Physicians of South Florida Clinics Braincipher

Discovery Date: 2025-05-05

[AI generated] N/A...

neatem.fr Braincipher

Discovery Date: 2025-05-05
Estimated Attack Date: 2025-02-17

[AI generated] N/A...

mbmdubai.com Braincipher

Discovery Date: 2025-05-05

[AI generated] N/A...

ddecor.com Braincipher

Discovery Date: 2025-05-05

[AI generated] D'Decor is a leading home decor company known for its innovative and stylish range of...

ruizre.es Braincipher

Discovery Date: 2025-05-05

[AI generated] Ruizre.es is a real estate company based in Valencia, Spain that specializes in prope...

soundtransit.org Braincipher

Discovery Date: 2025-05-05

[AI generated] Sound Transit, operating under the domain "soundtransit.org", is a mass transit agenc...

valedolobo.com Braincipher

Discovery Date: 2025-05-05

[AI generated] "Valedolobo.com" is the online platform for the Vale do Lobo resort located in Portug...

edisoft.es Braincipher

Discovery Date: 2025-05-05

[AI generated] Edisoft is a Spanish technological company specializing in development and implementa...

iycsa.com.co Braincipher

Discovery Date: 2025-05-05

[AI generated] N/A...

Rhode Island Department of Humain Services Braincipher

Discovery Date: 2024-12-23
Estimated Attack Date: 2024-12-13

Provides support and resources for health, financial aid, and social services in Rhode Island....

Modern Dental Group Limited Braincipher

Discovery Date: 2024-12-18

[AI generated] Modern Dental Group Limited is a global dental service provider headquartered in Hong...

Estar Seguros, S.A. Braincipher

Discovery Date: 2024-12-12

[AI generated] Estar Seguros, S.A. is an insurance company that specializes in providing a range of ...

Cristal y Lavisa S.A. de C.V. Braincipher

Discovery Date: 2024-12-12

[AI generated] Cristal y Lavisa S.A. de C.V. is a Mexican company specializing in the production and...

Deloitte UK Braincipher

Discovery Date: 2024-12-04

[AI generated] Deloitte UK is a leading professional services firm, part of the global Deloitte netw...

Royce Corporation Braincipher

Discovery Date: 2024-12-03

[AI generated] Royce Corporation is a global trading company specializing in the distribution and ma...

G-ONE AUTO PARTS DE MÉXICO, S.A. DE C.V. Braincipher

Discovery Date: 2024-12-02

[AI generated] G-ONE Auto Parts de México, S.A. de C.V. is a company based in Mexico specializing in...

COOPERATIVA TELEFONICA DE CALAFATE LTD. Braincipher

Discovery Date: 2024-11-13

[AI generated] COOPERATIVA TELEFONICA DE CALAFATE LTD. is a telecommunications cooperative based in ...

G-One Auto Parts de México S.A. de C.V. Braincipher

Discovery Date: 2024-11-13

[AI generated] G-One Auto Parts de México S.A. de C.V. is a Mexican company specializing in the dist...

Berridge Manufacturing Co. Braincipher

Discovery Date: 2024-10-29

[IA generated] Berridge Manufacturing Co. specializes in the production of high-quality metal roofin...

K&S Tool & Mfg Co. Braincipher

Discovery Date: 2024-10-28

[IA generated] K&S Tool & Mfg Co. is a company specializing in precision manufacturing and tooling s...

Basilio Advogados Braincipher

Discovery Date: 2024-10-28

[IA generated] Basilio Advogados is a prominent law firm based in Brazil, known for its expertise in...

CHRISTODOULOS G. VASSILIADES & CO. LLC Braincipher

Discovery Date: 2024-10-28

[IA generated] CHRISTODOULOS G. VASSILIADES & CO. LLC is a prominent law firm based in Cyprus, speci...

hanwa.co.th Braincipher

Discovery Date: 2024-09-22

Hanwa Co., Ltd. (Thailand) is a subsidiary of Hanwa Co., Ltd., a Japan-based global trading company....

rmn.fr Braincipher

Discovery Date: 2024-08-29

Réunion des Musées Nationaux-Grand Palais (RMN-GP) is a French cultural institution dedicated to man...

ghanare.com Braincipher

Discovery Date: 2024-08-28

Ghanare.com is an online platform dedicated to providing comprehensive real estate services in Ghana...

beinlaw.co.il - Prof. Bein & Co. Braincipher

Discovery Date: 2024-08-21

Prof. Bein & Co., accessible via beinlaw.co.il, is a reputable law firm based in Israel. It speciali...

tiendasmacuto.com Braincipher

Discovery Date: 2024-08-17

Tiendasmacuto.com is an online retail store specializing in outdoor and adventure gear. They offer a...

fabamaq.com Braincipher

Discovery Date: 2024-08-12

N/A

cyceron.fr Braincipher

Discovery Date: 2024-08-12

N/A

Sherbrooke Metals Braincipher

Discovery Date: 2024-07-21

N/A

Apex Global | Big leak outlooks - 2tb. Braincipher

Discovery Date: 2024-07-21

N/A

Cole Technologies Group Braincipher

Discovery Date: 2024-07-21

N/A

Family Wealth Advisors Ltd. Braincipher

Discovery Date: 2024-07-21

N/A

Mars 2 LLC Braincipher

Discovery Date: 2024-07-21

N/A

Indonesia Terkoneksi Braincipher

Discovery Date: 2024-07-01

More important than money, only honor....