Doppelpaymer

Inactive

Doppelpaymer is a ransomware family that encrypts user data and later on it asks for a ransom in order to restore original files. It is recognizable by its trademark file extension added to encrypted files: .doppeled. It also creates a note file named: ".how2decrypt.txt".

25 Victims

May 24, 2019 First Discovered

Apr 9, 2021 Last Discovered

1850 Days Inactive

66.7% Infostealer

0/1 Sites Online

Top Countries

US 15

FR 4

MX 1

CA 1

CL 1

Top Sectors

Manufacturing 9

Public Sector 9

Technology 2

Education 2

Transportation/Logistics 1

Telecommunication 1

Agriculture and Food Production 1

Known Locations (1)

Start-maximized.com

hpoo4dosa3x4ognfxpqcrjwnsigvslm7kv6hvmhh2yqczaxy3j6qnwad.onion

Victims (25)

Office of the Attorney General

US Manufacturing Discovered: Apr 9, 2021 · Attack est.: Apr 9, 2021

Azusa police department

US Public Sector Discovered: Feb 28, 2021 · Attack est.: Feb 28, 2021

Manutan

FR Manufacturing Discovered: Feb 20, 2021 · Attack est.: Feb 20, 2021

Kia Motors America (KMA)

US Manufacturing Discovered: Feb 15, 2021 · Attack est.: Feb 15, 2021

Cuyahoga Metropolitan Housing Authority

US Public Sector Discovered: Feb 7, 2021 · Attack est.: Feb 7, 2021

Foxconn

MX Manufacturing Discovered: Nov 28, 2020 · Attack est.: Nov 28, 2020

Delaware County

US Public Sector Discovered: Nov 27, 2020 · Attack est.: Nov 27, 2020

Compal

Manufacturing Discovered: Nov 7, 2020 · Attack est.: Nov 7, 2020

Banijay Group SAS

FR Technology Discovered: Oct 31, 2020 · Attack est.: Oct 31, 2020

Chatham County Government

US Public Sector Discovered: Oct 27, 2020 · Attack est.: Oct 27, 2020

Hall County

US Public Sector Discovered: Oct 6, 2020 · Attack est.: Oct 6, 2020

Newcastle University

Education Discovered: Aug 29, 2020 · Attack est.: Aug 29, 2020

4 Canadian courier divisions of TFI International's Canpar Express

CA Transportation/Logistics Discovered: Aug 18, 2020 · Attack est.: Aug 18, 2020

Boyce Technologies (device manufacturer- transit communication systems and now ventilators b/c of COVID-19)

US Manufacturing Discovered: Jul 31, 2020 · Attack est.: Jul 31, 2020

Knoxville PD and City of Knoxville, TN (Knox County)

US Public Sector Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020

City of Florence, Alabama

US Public Sector Discovered: Jun 4, 2020 · Attack est.: Jun 4, 2020

Digital Management Inc. (NASA Contractor)

US Technology Discovered: Jun 2, 2020 · Attack est.: Jun 2, 2020

Mitsubishi

Manufacturing Discovered: May 31, 2020 · Attack est.: May 31, 2020

Afpa

FR Education Discovered: Apr 16, 2020 · Attack est.: Apr 16, 2020

Kimchuk

US Manufacturing Discovered: Mar 4, 2020 · Attack est.: Mar 4, 2020

City of Torrance (Los Angeles County)

US Public Sector Discovered: Feb 29, 2020 · Attack est.: Feb 29, 2020

Visser Precision

US Manufacturing Discovered: Jan 31, 2020 · Attack est.: Jan 31, 2020

Bretagne Telecom

FR Telecommunication Discovered: Dec 31, 2019 · Attack est.: Dec 31, 2019

Chilean Ministry of Agriculture

CL Agriculture and Food Production Discovered: May 31, 2019 · Attack est.: May 31, 2019

City of Edcouch

US Public Sector Discovered: May 24, 2019 · Attack est.: May 24, 2019