Cheers
Cheers is a Linux-based ransomware group that emerged in 2022, built on leaked Babuk source code and specializing in attacks against VMware ESXi servers, running a double-extortion leak site with four documented victims.
Victims
15
First Discovered
2022-05-29
victim
Last Discovered
2022-09-14
victim
Inactive Since
3yrs
more than
Avg Delay
N/A
attack→claim
Infostealer
N/A
victims with domain
Countries
0
hit
Known Locations (2)
| Favicon | Title | Type | Available | Last Visit | Server Info | FQDN | |
|---|---|---|---|---|---|---|---|
|
Cheers! | No | 2026-04-28T07:22:57 |
rwiajgajdr4kzlnrj5zwebbukpcbrjhupjmk6gufxv6tg7myx34iocad.onion
|
|||
|
sembmarine | No | 2026-04-28T07:25:32 |
crkfkmrh4qzbddfrl2axnkvjp5tgwx73d7lq4oycsfxc7pfgbfhtfiid.onion
|
Target
Top 5 Activity Sectors
- Financial Services 6
- Transportation/Logistics 4
- Hospitality and Tourism 2
- Technology 1
- Healthcare 1
Top 5 Countries
Heatmap
YARA Rules (1)
Victims (15)
