Doppelpaymer is a ransomware family that encrypts user data and later on it asks for a ransom in order to restore original files. It is recognizable by its trademark file extension added to encrypted files: .doppeled. It also creates a note file named: ".how2decrypt.txt".
| Victim Name | Country | Date |
|---|---|---|
| Office of the Attorney General |  |
2021-04-10 |
| Azusa police department | |
2021-03-01 |
| Manutan |  |
2021-02-21 |
| Kia Motors America (KMA) | |
2021-02-16 |
| Cuyahoga Metropolitan Housing Authority | |
2021-02-08 |
| Foxconn |  |
2020-11-29 |
| Delaware County | |
2020-11-28 |
| Compal |  |
2020-11-08 |
| Banijay Group SAS | |
2020-11-01 |
| Chatham County Government | |
2020-10-28 |
| Hall County | |
2020-10-07 |
| Newcastle University | |
2020-08-30 |
| 4 Canadian courier divisions of TFI International's Canpar Express |  |
2020-08-19 |
| Boyce Technologies (device manufacturer- transit communication systems and now ventilators b/c of COVID-19) | |
2020-08-01 |
| Knoxville PD and City of Knoxville, TN (Knox County) | |
2020-06-11 |
| City of Florence, Alabama | |
2020-06-05 |
| Digital Management Inc. (NASA Contractor) | |
2020-06-03 |
| Mitsubishi | |
2020-06-01 |
| Kimchuk | |
2020-03-05 |
| City of Torrance (Los Angeles County) | |
2020-03-01 |
| Visser Precision | |
2020-02-01 |
| Bretagne Telecom | |
2020-01-01 |
| Chilean Ministry of Agriculture |  |
2019-06-01 |
| City of Edcouch | |
2019-05-25 |