{"id":45089,"date":"2021-06-28T15:45:37","date_gmt":"2021-06-28T12:45:37","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=45089"},"modified":"2025-08-31T20:03:50","modified_gmt":"2025-08-31T17:03:50","slug":"babuk-locker-ransomware-design-template-leaked-online","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/babuk-locker-ransomware-design-template-leaked-online\/","title":{"rendered":"Babuk Locker ransomware design template leaked online"},"content":{"rendered":"

Unknown actors posted online an archive containing a Babuk Locker ransomware design template. Security researcher Kevin Beaumont drew attention to it.<\/p>\n

\n

Ransomware leak time \u2014 Babuk\u2019s builder. Used for making Babuk payloads and decryption.<\/p>\n

builder.exe foldername, e.g. builder.exe victim will spit out payloads for:<\/p>\n

Windows, VMware ESXi, network attached storage x86 and ARM.<\/p>\n

note.txt must contain ransom.https:\/\/t.co\/K3J3zr1XBv<\/a> pic.twitter.com\/1bl7oc0TvO<\/a><\/p>\n

\u2014 Kevin Beaumont (@GossiTheDog) June 27, 2021<\/a><\/p>\n<\/blockquote>\n