Negotiation chat with different groups
Akira
- 20230529 – 7 message(s) voir chat
- 20230606 – 13 message(s) voir chat
- 20230616 – 80 message(s) voir chat
- 20230628 – 5 message(s) voir chat
- 20230707 – 37 message(s) voir chat
- 20230719 – 4 message(s) voir chat
- 20230722 – 9 message(s) voir chat
- 20230727 – 72 message(s) voir chat
- 20230728 – 5 message(s) voir chat
- 20230815 – 84 message(s) voir chat
- 20230929 – 58 message(s) voir chat
- 20231112 – 58 message(s) voir chat
- 20231115 – 81 message(s) voir chat
- 20231209 – 112 message(s) voir chat
- 20231217 – 67 message(s) voir chat
- 20231227 – 74 message(s) voir chat
- 20240127 – 41 message(s) voir chat
- 20240129 – 70 message(s) voir chat
- 20240131 – 75 message(s) voir chat
- 20240201 – 40 message(s) voir chat
- 20240301 – 43 message(s) voir chat
- 20240317 – 8 message(s) voir chat
- 20240329 – 65 message(s) voir chat
- 20240410 – 16 message(s) voir chat
- 20240424 – 70 message(s) voir chat
- 20240509 – 170 message(s) voir chat
- 20240531 – 55 message(s) voir chat
- 20240611 – 50 message(s) voir chat
- 20240618 – 53 message(s) voir chat
- 20240620 – 7 message(s) voir chat
- 20240718 – 105 message(s) voir chat
- 20240719 – 6 message(s) voir chat
- 20240723 – 43 message(s) voir chat
- 20240803 – 34 message(s) voir chat
- 20250104 – 13 message(s) voir chat
- 20250108 – 10 message(s) voir chat
- 20250110 – 7 message(s) voir chat
- 20250112 – 44 message(s) voir chat
- 20250117 – 70 message(s) voir chat
- 20250120 – 7 message(s) voir chat
- 20250121 – 26 message(s) voir chat
- 20250125 – 9 message(s) voir chat
- 20250216 – 14 message(s) voir chat
- 20250217 – 13 message(s) voir chat
- 20250222 – 72 message(s) voir chat
- 20250227 – 56 message(s) voir chat
- 20250306 – 9 message(s) voir chat
- 20250310 – 24 message(s) voir chat
- 20250312 – 20 message(s) voir chat
- 20250313 – 43 message(s) voir chat
- 20250321 – 25 message(s) voir chat
- 20250328 – 39 message(s) voir chat
- 20250330 – 15 message(s) voir chat
- 20250331 – 6 message(s) voir chat
- 20250408 – 12 message(s) voir chat
- 20250417 – 59 message(s) voir chat
- 20250423 – 65 message(s) voir chat
- 20250424 – 12 message(s) voir chat
- 20250425 – 6 message(s) voir chat
- 20250425b – 15 message(s) voir chat
Avaddon
- 20210112 – 25 message(s) voir chat
- 20210324 – 73 message(s) voir chat
- 20210430 – 103 message(s) voir chat
- 20210512 – 35 message(s) voir chat
- 20210518 – 17 message(s) voir chat
- 20210518_2 – 24 message(s) voir chat
- 20210518_3 – 103 message(s) voir chat
Avos
- 20210903 – 86 message(s) voir chat
Babuk
BlackBasta
- 20221011 – 50 message(s) voir chat
- 20221229 – 50 message(s) voir chat
- 20230410 – 57 message(s) voir chat
- 20230501 – 50 message(s) voir chat
- 20240814 – 50 message(s) voir chat
BlackMatter
Cloak
Conti
- 20201017 – 78 message(s) voir chat
- 20201019 – 9 message(s) voir chat
- 20201109 – 255 message(s) voir chat
- 20201121 – 6 message(s) voir chat
- 20201230 – 146 message(s) voir chat
- 20210107 – 139 message(s) voir chat
- 20210126 – 9 message(s) voir chat
- 20210219 – 12 message(s) voir chat
- 20210305 – 45 message(s) voir chat
- 20210315 – 49 message(s) voir chat
- 20210316 – 63 message(s) voir chat
- 20210426 – 12 message(s) voir chat
- 20210428 – 13 message(s) voir chat
- 20210513 – 78 message(s) voir chat
- 20210517 – 56 message(s) voir chat
- 20210517_b – 69 message(s) voir chat
- 20210520 – 101 message(s) voir chat
- 20210602 – 81 message(s) voir chat
- 20210611 – 48 message(s) voir chat
- 20210628 – 34 message(s) voir chat
- 20210708 – 25 message(s) voir chat
- 20210715 – 10 message(s) voir chat
- 20210805 – 47 message(s) voir chat
- 20210812 – 46 message(s) voir chat
- 20210820 – 50 message(s) voir chat
- 20210902 – 43 message(s) voir chat
- 20210904 – 17 message(s) voir chat
- 20210923 – 14 message(s) voir chat
- 20211108 – 32 message(s) voir chat
- 20211112 – 32 message(s) voir chat
- 20211205 – 63 message(s) voir chat
- 20211217 – 27 message(s) voir chat
Darkside
- 20200811 – 85 message(s) voir chat
- 20201115 – 243 message(s) voir chat
- 20210215 – 24 message(s) voir chat
- 20210413 – 63 message(s) voir chat
- 20210418 – 10 message(s) voir chat
Dragonforce
- 058f4b92-ae99-45c7-bf35-5d2d6754b3de – 19 message(s) voir chat
- 05f724f8-906e-4739-8177-815852cc2c3f – 29 message(s) voir chat
- 29BBE03074FDBB8D – 10 message(s) voir chat
- 7A313D13EB6B4E58 – 32 message(s) voir chat
- 89716D29D2CEE36F – 23 message(s) voir chat
- AB0404E049514B50 – 28 message(s) voir chat
- BD004D632D87DBA0 – 25 message(s) voir chat
- C2A3C7249797F5ED – 66 message(s) voir chat
- C42CDF65B97D0E92 – 30 message(s) voir chat
- C7CD31EAAF9DE9AC – 71 message(s) voir chat
- C8479B30418B331E – 4 message(s) voir chat
- D6DDD9B26D7D41DB – 14 message(s) voir chat
- FDA8141B6DD392E3 – 10 message(s) voir chat
- b8e14e1a-548f-4eec-bd6e-a590126e57c9 – 14 message(s) voir chat
Hive
- 20211004 – 70 message(s) voir chat
- 20211005 – 19 message(s) voir chat
- 20211026 – 46 message(s) voir chat
- 20211102 – 58 message(s) voir chat
- 20211113 – 136 message(s) voir chat
- 20211126 – 4 message(s) voir chat
- 20211213 – 15 message(s) voir chat
- 20211220 – 24 message(s) voir chat
Hunters International
- 20240510 – 29 message(s) voir chat
Mallox
- 20230427 – 62 message(s) voir chat
- 20230529 – 29 message(s) voir chat
- 20230530 – 17 message(s) voir chat
NoEscape
Pear
- 20250720 – 42 message(s) voir chat
Qilin
REvil
- 20201014 – 72 message(s) voir chat
- 20201104 – 63 message(s) voir chat
- 20201126 – 79 message(s) voir chat
- 20210320 – 13 message(s) voir chat
- 20210329 – 43 message(s) voir chat
- 20210331 – 23 message(s) voir chat
- 20210401 – 78 message(s) voir chat
- 20210407 – 15 message(s) voir chat
- 20210413 – 156 message(s) voir chat
- 20210603 – 63 message(s) voir chat
- 20210604 – 10 message(s) voir chat
- 20210609 – 58 message(s) voir chat
- 20210613 – 132 message(s) voir chat
- 20210616 – 31 message(s) voir chat
- 20210617 – 67 message(s) voir chat
- 20210622 – 52 message(s) voir chat
- 20210628 – 39 message(s) voir chat
- 20210630 – 42 message(s) voir chat
- 20210708 – 28 message(s) voir chat
- 20210709 – 1 message(s) voir chat
RansomHub
- 20240810 – 1 message(s) voir chat
Ranzy
RunSomeWares
- 20250411 – 27 message(s) voir chat
fog
- 20240517 – 27 message(s) voir chat
- 20240729 – 144 message(s) voir chat
- 20240830 – 73 message(s) voir chat
- 20240910 – 26 message(s) voir chat
- 20240927 – 60 message(s) voir chat
- 20241119 – 3 message(s) voir chat
lockbit3.0
- **************************149576 – 17 message(s) voir chat
- Leaked2025-ClientID-124 – 55 message(s) voir chat
- Leaked2025-ClientID-154 – 137 message(s) voir chat
- Leaked2025-ClientID-206 – 4 message(s) voir chat
- Leaked2025-ClientID-36 – 55 message(s) voir chat
- aguasdoporto_pt – 3 message(s) voir chat
- bakkerheftrucks_com – 27 message(s) voir chat
- bankbsi_co_id – 27 message(s) voir chat
- chsf_fr – 42 message(s) voir chat
- colonialgeneral_com – 25 message(s) voir chat
- continental_com – 37 message(s) voir chat
- datair_com – 106 message(s) voir chat
- emunworks_com – 8 message(s) voir chat
- entrust_com – 29 message(s) voir chat
- gavresorts_com_br – 6 message(s) voir chat
- genusplc_com – 34 message(s) voir chat
- gocontec_com – 52 message(s) voir chat
- guardiananalytics_com – 27 message(s) voir chat
- hgc_com_hk – 8 message(s) voir chat
- kaycan_com – 94 message(s) voir chat
- lapostemobile_fr – 93 message(s) voir chat
- millennia_pro – 43 message(s) voir chat
- myerspower_com – 99 message(s) voir chat
- newbridge_org – 70 message(s) voir chat
- nicklaus_com – 43 message(s) voir chat
- okcu_edu – 56 message(s) voir chat
- omscomponents_it – 66 message(s) voir chat
- plasticproductsco_com – 28 message(s) voir chat
- porcelanosa-usa_com – 8 message(s) voir chat
- preflooring_com – 17 message(s) voir chat
- psenergy_com – 25 message(s) voir chat
- qsi-q3_de – 20 message(s) voir chat
- royalmailgroup_com – 103 message(s) voir chat
- samyang_com – 237 message(s) voir chat
- scohil_com – 29 message(s) voir chat
- sirva_com – 78 message(s) voir chat
- software-line_it – 30 message(s) voir chat
- tapcocu_org – 215 message(s) voir chat
- vitalityhp_net – 73 message(s) voir chat
- vsainc_com – 21 message(s) voir chat
- wabteccorp_com – 39 message(s) voir chat
- wcinet_com – 34 message(s) voir chat
mount-locker
- 20201016 – 60 message(s) voir chat
trinity
- 0001 – 2 message(s) voir chat
- 0002 – 52 message(s) voir chat
- 0003 – 298 message(s) voir chat
- 0004 – 170 message(s) voir chat
- 0005 – 14 message(s) voir chat
- 0006 – 11 message(s) voir chat
- 0007 – 36 message(s) voir chat
- 0008 – 13 message(s) voir chat
- 0009 – 6 message(s) voir chat
- 0010 – 8 message(s) voir chat
- 0011 – 50 message(s) voir chat
- 0012 – 15 message(s) voir chat
- 0013 – 32 message(s) voir chat
- 0014 – 6 message(s) voir chat
Victim
> [redacted]
Akira
> Hello. You've reached Akira support chat. Currently, we are preparing the list of data we took from your network. For now you have to know that dealing with us is the best possible way to settle this quick and cheap. Keep in touch and be patient with us. Do you have a permission to conduct a negotiation on behalf of your organization? Once we get a response you will be provided with all the details.
Victim
> Yes
Akira
> Wait a bit.
Akira
> List.7z // 554 KB
Akira
> These files were taken from your network prior to encryption. You can pick 2-3 random files from the list and we will upload them to this chat as a proof of possession. To prove that we can properly decrypt your data you can upload 2-3 encrypted files to our chat and we will upload decrypted copies back.
Victim
> [redacted].pdf
Victim
> [redacted].docx
Victim
> [redacted].docx
Victim
> Files.zip // 54.1 KB
Akira
> Passing to my tech dept. Please wait.
Akira
> decrypted.7z // 22 KB
Akira
> files.7z // 538 KB
Akira
> So, we've gone through your files to define your financial abilities. We've been looking through your bank statements, net income, cyber liability limits, financial audits - all the info that might help us calculate our demand to you. We're willing to set a $350,000 price for ALL the services we offer: 1) full decryption assistance;
2) evidence of data removal;
3) security report on vulnerabilities we found;
4) guarantees not to publish or sell your data;
5) guarantees not to attack you in the future. Let me know whether you're interested in a whole deal or in parts. This will affect the final price.
2) evidence of data removal;
3) security report on vulnerabilities we found;
4) guarantees not to publish or sell your data;
5) guarantees not to attack you in the future. Let me know whether you're interested in a whole deal or in parts. This will affect the final price.
Victim
> We are interesed in parts. Can you detail the price on every service ?
Akira
> 1) full decryption assistance - $250,000;
2) evidence of data removal - $150,000;
3) security report on vulnerabilities we found - $25,000;
4) guarantees are included to each of the above options.
2) evidence of data removal - $150,000;
3) security report on vulnerabilities we found - $25,000;
4) guarantees are included to each of the above options.
Victim
> The amount requested by you is exaggerated. The amount requested by you is half of the company's profit for the whole year. If we refer to the encrypted data, it can be recovered by manually restoring the databases, something that certainly costs less than $250,000 - the cost of total decryption. We are still willing to negotiate, but with a much smaller amount. The maximum we can offer is $50,000, but we cannot pay the amount in full, but in installments, because we cannot legally remove this amount from the accounting. Our proposal is to divide this amount into 10 packages, and you decrypt packages of files for us. We pay in advance for each package.
Akira
> We will never accept your terms, so we can end this right now. You can go back and forth but we will never be lower than 230k for the full package. The first option is $140,000 and it is the bottom line. We accept payments in full, so you can transfer funds to your broker in parts.
Victim
> How will we pay ?
Victim
> what is the bank account ?
Akira
> We accept payments in bitcoins. Once we agree on the price, I'll provide you our wallet ID.
Victim
> The board has agreed to a 100.000 euro payment
Victim
> This is for full decryption
Victim
> We can do it in one payment
Akira
> ok. We are ready to close the deal at $120,000. I am pretty sure you can add a bit to your current offer and make a transaction that will satisfy both parties. Here is our BTC wallet [redacted] Please let me know how soon can we expect the transfer.
Akira
> Hello. Are you going to finish the deal with us?
Victim
> Hello! We are processing the request with the Financial Department and Legal
Akira
> How long should we wait?
Victim
> We have made a test transaction. The board is reluctant to this type of payment. Now we wait for confirmation of the payment.
Akira
> 0.00430313 received. You can proceed with the full amount.
Akira
> What's your progress?
Victim
> Economic department issues
Akira
> How soon can w eexpect the rest?
Akira
> I am waiting for an update from you today.
Victim
> It seems the board is doesn't trust to pay the money
Akira
> Can you please explain? Are we going to have a deal? You've already sent us the test payment.
Victim
> The board came to the conclusion that we have no warranty that we will get our data back. The risk of not getting anything vs. the amount that we have to pay.
Akira
> We've proven that we can decrypt the files and after payment we can give you back the files we took from your network. Our initial demand has been decreased significantly and now you are saying that there is a risk. Did I understand you right that this is your final decision and there will be no deal with you?
Victim
> I'm sorry. It is not my decision
Akira
> OK Thanks for the information. We will announce this incident on our blog and your data will be uploaded there as well.
Auteur/autrice
sdgadmin@tux.ovh