Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Lockbit

No description available.

Victims
 

5

First Discovered
victim

2020-10-21

Last Discovered
victim

2021-08-23

Inactive Since
in day(s)

1461

Avg Delay
between attack and claim

N/A

Infostealer
for victim with domain

N/A

View Victims on World Map

View group statistics

Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon None No 2025-06-01 21:18:42 lockbitkodidilol.onion
Target (Available)
Top 5 Activity Sectors
  • Transportation Systems 2
  • Communication 1
  • Critical Manufacturing 1
  • Information Technology 1
Top 5 Countries
  • IN flag India 1
  • CH flag Switzerland 1
  • GB flag United Kingdom 1
  • TH flag Thailand 1
Heatmap (Available)
Ransom Notes (0)

No ransom notes available.

Tools Used (Not Available)

No tools used available.

Vulnerabilities Exploited (8)
This information is provided by Ransomware-Vulnerability-Matrix
Vendor Product CVE Source
Apache Log4j CVE-2021-44228 cisa.gov
Citrix NetScaler ADC & Gateway CVE-2023-4966 doublepulsar.com
Fortinet FortiOS CVE-2018-13379 cisa.gov
Fortra GoAnywhere Managed File Transfer CVE-2023-0669 cisa.gov
F5 iControl REST CVE-2021-22986 cisa.gov
PaperCut PaperCut Application Server CVE-2023-27350, CVE-2023-27351 twitter.com/MsftSecIntel
Windows NetLogon CVE-2020-1472 cisa.gov
Windows Remote Desktop Services CVE-2019-0708 cisa.gov
TTPs Matrix (0)

No TTPs available.

Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (26)
IP 10 MD5 16
Type IOC
ip 150.171.30.10
ip 20.101.57.9
ip 84.201.211.40
ip 23.54.127.209
ip 64.233.181.94
ip 199.232.210.172
ip 184.28.89.167
ip 20.12.23.50
ip 184.30.21.171
ip 40.69.42.241
md5 f954f24e6eb85ef1b64e315491dad816
md5 f828044c91ac00afffcd77b4ce680857
md5 8ff61e4156c10b085e0c2233f24e8501
md5 1319da1523ec2a67bda016c15334c195
md5 b86aacec897b8376c23647c4f0e78fba
md5 15796971d60f9d71ad162060f0f76a02
md5 ba56b0c4a215b40cbe64f8f8b1f166ad
md5 7e525ef64a4e27fbb325d7cb4653f0a1
md5 d96d2bcf13d55740f3bb64d45d2db94d
md5 2b84852065e28974e4081826ff09ddc1
md5 e0411fcbbff0e20922d224c3ac8c811e
md5 eab3acdd2b9415686df2c0f8bacb08e9
md5 a8e97fe5a7115e42759d67f7e4d88b0d
md5 d0457a54a4905ed5d2bb8a2b7ef7be0f
md5 2be48ff323cb01f43f28e4572cbe9b92
md5 0a12b53d92f56d3dafb4e68083f94654
Victims (5)
Logo
Bangkok Airways Lockbit
Discovery Date: 2021-08-23
N/A
TH
Logo
Accenture Lockbit
Discovery Date: 2021-07-30
N/A
Logo
Merseyrail (Rail network) Lockbit
Discovery Date: 2021-04-01
N/A
GB
Logo
Kopter Lockbit
Discovery Date: 2020-11-30
N/A
CH
Logo
Press Trust of India (PTI) Lockbit
Discovery Date: 2020-10-21
N/A
IN