Ransomware Group: yurei

Grupo Ransomware: yurei

Perfil del grupo segun ransomware.anggipradana.com.

Descripcion

Yurei is a ransomware group first observed in September 2025 whose payload is a minimally modified fork of the open-source Prince-Ransomware, using ChaCha20 encryption and propagating across SMB shares, primarily targeting food manufacturing, transportation, and IT sectors in Sri Lanka and Nigeria.

Referencias

• Ransomware Dashboard