R
Ransomwhere.org
Live MapLatest VictimsGroups
PaymentsTTPsIdentifyNewsDataAPI
LIVE
Ransomwhere.org

Real-time ransomware intelligence platform. Tracking threat actors, victims, and payments to raise awareness and help defend against ransomware attacks worldwide.

Platform

  • Live Map
  • Latest Victims
  • Groups
  • Payments
  • Identify
  • News

Resources

  • Data & Methodology
  • API Docs
  • NoMoreRansom
  • Ransomware.live
  • CISA Advisories

Data sourced from Ransomware.live API. For informational purposes only.

© 2026 Ransomwhere.org

Groups/medusalocker

medusalocker

Inactive

Medusa is a DDoS bot written in .NET 2.0. In its current incarnation its C&C protocol is based on HTTP, while its predecessor made use of IRC.

51
Victims
4
Sites

Known Leak Sites

qd7pcafncosqfqu3ha6fcx4h6sr7tzwagzpcdcnytiw3b6varaeqv5yd.onionDLS
z6wkgghtoawog5noty5nxulmmt2zs7c3yvwr22v4czbffdoly2kl4uad.onionDLS
95.143.191.148:3000Chat
medusaxko7jxtrojdkxo66j7ck4q5tgktf7uqsqyfry4ebnxlcbkccyd.onionDLS

Victims (51)

Live
dulay.ca
medusalockerCA
usenergy
medusalockerUS
UnigazJordan
medusalockerJO
Mulia Raya
medusalockerID
Curtain Bluff
medusalockerAG
Inversiones Clinica Del Meta SA
medusalockerCO
MICRO MANUFACTRING
medusalocker
bendixengineering
medusalockerUS
SILKNET COMPANY
medusalockerUS
Protected: HIDE NAME
medusalocker
SHAMASS.ORG
medusalockerUS
Protected: HIDE NAME SELL DATA SOON
medusalocker
Protected: Name is hidden
medusalocker
skalar.com
medusalocker
Ada-Borup-West School
medusalocker
wellons.org
medusalocker
Confidential files
medusalocker
INSULCANA CONTRACTING LTD
medusalocker
Protected: INSULCANA CONTRACTING LTD
medusalocker
Protected: Hidden name
medusalocker
Hoosier Equipment company
medusalocker
Ucamco Belgium
medusalocker
reutlingen.ihk.de
medusalockerDE
Hausamman company
medusalocker
kafflogistic.hu
medusalockerHU

Top Targeted Countries

Unknown39
United States4
Canada1
JO1
Indonesia1

Profile

:

Activity

Total victims51
Countries affected10
Last seen