// group profile

m3rx

Inactive

M3rx is a small ransomware group first observed in 2025, using AES-CTR/AES-GCM encryption and targeting organizations in England, the US, Australia, Germany, Italy, and Switzerland, with around eight claimed victims including a Sydney-based property firm.

Victims

Sites

Victims (19)

Live

dosocho.es

m3rxSpain

soft-inc.com

m3rxJapan

psbsementi.it

m3rxItaly

grupo55.com

m3rxSpain

pvdd.ca

m3rxCanada

datasavior.com

m3rxUnited States

kbtoys.com.au

m3rxAustralia

alge-stop.dk

m3rxDenmark

emtco.com

m3rxUnited States

it-freitag.de

m3rxGermany

manateeair.com

m3rxUnited States

dmschweiz.ch

m3rxSwitzerland

anvilarts.org.uk

m3rxUnited Kingdom

primeproperties.com.au

m3rxAustralia

airdriephysio.com

m3rxUnited Kingdom

rainforestclean.com

m3rxUnited States

rotak.it

m3rxItaly

osoftec.com

m3rxGermany

boxtopia.co.uk

m3rxUnited Kingdom

Known Leak Sites

4k6plf4h2cm2nco6ae3inrsxnmqgl6lllmwefydhnlcq4tuhwbj4qpad.onionDLS

pippahtohg6qgioqu3ixrsueefuw7thythmmeanyrgwn3eixcuu6jvqd.onionChat

Top Targeted Countries

United States4

United Kingdom3

Spain2

Italy2

Australia2

Activity

Total victims19

Countries affected10

Last seenNo recent activity

Explore

→

Ransomware NewsRelated articles

→

Check DecryptorsFree tools

→

Payment DataRansom tracking

→

MITRE ATT&CKTechniques

→

Live MapGlobal view

Source: ransomware.live|Refreshes every 5 min