payloadbin

29 tracked victims

·first seen 2021-09-09·last activity 2022-01-06

Group profile

PayloadBIN is a ransomware strain deployed in 2021 by Evil Corp as a rebranding of their WastedLocker/Hades/Phoenix lineage, specifically designed to evade US Treasury OFAC sanctions by impersonating the unrelated Babuk gang's rebrand rather than operating as an independent group.

Recent victims

Date	Website / victim	Sector	Country
2022-01-06	A aquila.ch	Not Found	CH
2022-01-01	W www.paw.eu	Not Found
2022-01-01	S Serenity Homes SWFL	Construction
2021-12-23	W www.hillsdalefurniture.com	Consumer Services
2021-10-19	D dawsoncountyne.org	Public Sector
2021-10-16	W www.lockslaw.com	Business Services
2021-09-30	C calautomotive.com	Consumer Services
2021-09-30	C calsoft	Technology
2021-09-30	C calsoft.com	Technology
2021-09-25	W www.myyp.com	Not Found
2021-09-09	R Reconservices.com	Business Services
2021-09-09	C Capstoneins.com	Financial Services
2021-09-09	N neuro-logica.com	Healthcare
2021-09-09	W webstercare.com.au	Healthcare	AU
2021-09-09	W www.crm.com	Technology
2021-09-09	W www.coreslab.com	Technology
2021-09-09	W www.emmawillard.org	Education
2021-09-09	P pdsec.com	Business Services
2021-09-09	conferenceusa.comconferenceusa.com	Hospitality and Tourism	US
2021-09-09	S sklarwilton.com	Business Services
2021-09-09	N nsuship.co.jp	Transportation/Logistics	JP
2021-09-09	I iRely LLC's Grand Failure	Not Found
2021-09-09	C CD Project data	Technology
2021-09-09	Victrongroup.comvictrongroup.com	Manufacturing	VN
2021-09-09	U Uptownbakers.com	Agriculture and Food Production
2021-09-09	T Truckcentercompanies.com	Transportation/Logistics
2021-09-09	C Connelypartners.com	Business Services
2021-09-09	W Wrgtexas.com	Energy
2021-09-09	W www.webstercare.com.au	Healthcare	AU