Active ransomware operator
← All groupsSATAN LOCK
aka satanlock · 0 victims indexed
0
Victims indexed
—
Active period
—
Countries hit
At a glance
- Status
- active
- Aliases
- satanlock
- First seen
- —
- Last activity
- —
- Onion sites
- 1 known endpoint
About
Connected to GD Lockersec and Babuk-Bjorka.
<br/>
<br/>Group is aka SalanLock (from typo on victim pages).
References
1 linkExternal sources curated by the MISP threat-intel community.
Recent victims
Loading…
Onion infrastructure
1 known- http://mgeegnexyhhn5dpqewihjy33qyhng3gy66h3fogiwefl5hljhtmfznad.onion
Source
Updated recentlyData on this page is sourced from the group's own leak posts, cross-checked with public ransomware trackers (RansomLook, ransomware.live, RansomWatch), MITRE ATT&CK, and our own Tor and Telegram crawlers. This is a public observatory page — share freely.
Get alerted the next time SATAN LOCK posts a victim.
Add SATAN LOCK to your watchlist — Pro pings you within 5 minutes of any new SATAN LOCK leak-site post, Telegram callout, or affiliate-rebrand inference.