← Back to Ransomware Tracker
Netwalker
Inactive
NetWalker ransomware group operates by the threat actor known as "CIRCUS SPIDER". The NetWalker ransomware was discovered in 2019. The group mainly targeting the Asia Pacific region but can attack globally. The group uses common attacking tools like Mimikatz and other legitimate tools (LOLBINS) like PSTools, AnyDesk, TeamViewer, NLBrute, and more. The group knowing by targeting the healthcare sector. Finally, in January 2021, Netwalker was takedown by the authorities, the police have confiscated hundreds of thousands of dollars in ransom payments collected by the Netwalker group, and they seized servers and disrupted the infrastructure and the darknet websites of the Netwalker ransomware group.
26
Victims
Jan 31, 2020
First Discovered
Dec 12, 2020
Last Discovered
1923
Days Inactive
0%
Infostealer
0/1
Sites Online
Top Countries
US 13
CA 3
AU 2
PK 1
AR 1
AT 1
Top Sectors
Healthcare and Public Health 5
Information Technology 4
Energy 4
Critical Manufacturing 4
Education Facilities 3
Commercial Facilities 2
Government Facilities 2
Transportation Systems 2
Known Locations (1)
rnfdsgm6wb6j6su5txkekw4u4y47kp2eatvu7d6xhyn5cs4lt4pdrqqd.onion
Victims (26)
Nygard International
CA
Commercial Facilities
Discovered: Dec 12, 2020 · Attack est.: Dec 12, 2020
CSAT Solutions
Information Technology
Discovered: Dec 1, 2020 · Attack est.: Dec 1, 2020
Enel Group
Energy
Discovered: Oct 19, 2020 · Attack est.: Oct 19, 2020
KYB Corporation
US
Critical Manufacturing
Discovered: Oct 1, 2020 · Attack est.: Oct 1, 2020
Wilmington Surgical Associates
US
Healthcare and Public Health
Discovered: Oct 1, 2020 · Attack est.: Oct 1, 2020
Equinix
US
Information Technology
Discovered: Sep 7, 2020 · Attack est.: Sep 7, 2020
K-Electric (electric utility supplier)
PK
Energy
Discovered: Sep 7, 2020 · Attack est.: Sep 7, 2020
Jands
AU
Critical Manufacturing
Discovered: Sep 1, 2020 · Attack est.: Sep 1, 2020
Cygilant (threat detection cybersecurity company)
Information Technology
Discovered: Sep 1, 2020 · Attack est.: Sep 1, 2020
Direccion Nacional de Migraciones (Argentina's official immigration agency)
AR
Government Facilities
Discovered: Aug 27, 2020 · Attack est.: Aug 27, 2020
Entrust Energy
US
Energy
Discovered: Aug 5, 2020 · Attack est.: Aug 5, 2020
Center for Fertility and Gynecology (Los Angeles)
US
Healthcare and Public Health
Discovered: Aug 1, 2020 · Attack est.: Aug 1, 2020
Olympia House (Petaluma)
US
Healthcare and Public Health
Discovered: Aug 1, 2020 · Attack est.: Aug 1, 2020
Forsee Power
Critical Manufacturing
Discovered: Aug 1, 2020 · Attack est.: Aug 1, 2020
Canadian Tire
CA
Commercial Facilities
Discovered: Aug 1, 2020 · Attack est.: Aug 1, 2020
Alfanar
Critical Manufacturing
Discovered: Jul 9, 2020 · Attack est.: Jul 9, 2020
Trinity Metro (Fort Worth transit agency)
US
Transportation Systems
Discovered: Jul 1, 2020 · Attack est.: Jul 1, 2020
Lorien Health Services
US
Healthcare and Public Health
Discovered: Jun 6, 2020 · Attack est.: Jun 6, 2020
Columbia College of Chicago
US
Education Facilities
Discovered: Jun 3, 2020 · Attack est.: Jun 3, 2020
University of San Francisco (UCSF)
US
Education Facilities
Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Michigan State University
US
Education Facilities
Discovered: May 27, 2020 · Attack est.: May 27, 2020
Network of Village of Weiz
AT
Government Facilities
Discovered: May 1, 2020 · Attack est.: May 1, 2020
Spectra Logic
US
Information Technology
Discovered: May 1, 2020 · Attack est.: May 1, 2020
Northwest Territories Power Corporation
CA
Energy
Discovered: Apr 30, 2020 · Attack est.: Apr 30, 2020
Champaign-Urbana Public Health District
US
Healthcare and Public Health
Discovered: Mar 10, 2020 · Attack est.: Mar 10, 2020
Toll Group
AU
Transportation Systems
Discovered: Jan 31, 2020 · Attack est.: Jan 31, 2020