R
Ransomwhere.org
Live MapLatest VictimsGroups
PaymentsTTPsIdentifyNewsDataAPI
LIVE
Ransomwhere.org

Real-time ransomware intelligence platform. Tracking threat actors, victims, and payments to raise awareness and help defend against ransomware attacks worldwide.

Platform

  • Live Map
  • Latest Victims
  • Groups
  • Payments
  • Identify
  • News

Resources

  • Data & Methodology
  • API Docs
  • NoMoreRansom
  • Ransomware.live
  • CISA Advisories

Data sourced from Ransomware.live API. For informational purposes only.

© 2026 Ransomwhere.org

Groups/babuk

babuk

Inactive

Babuk Ransomware is a sophisticated ransomware compiled for several platforms. Windows and ARM for Linux are the most used compiled versions, but ESX and a 32bit old PE executable were observed over time. as well It uses an Elliptic Curve Algorithm (Montgomery Algorithm) to build the encryption keys.

8
Victims
1
Sites

Known Leak Sites

nq4zyac4ukl4tykmidbzgdlvaboqeqsemkp4t35bzvjeve6zm2lqcjid.onionDLS

Victims (8)

Live
4murs.com
babukFR
Arabian Computer Supplies co.
babuk
spsr-law.com
babuk
E.A. Gibson Shipbrokers
babuk
BridgeMill Athletic Club
babuk
Houston Rockets NBA Team
babukUS
Washington DC Metropolitan Police Department
babukUS
Serco
babuk

Top Targeted Countries

Unknown5
United States2
France1

Activity

Total victims8
Countries affected3
Last seen