Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Benzona

| Active

None

Victims
 

8

First Discovered
victim

2025-11-26

Last Discovered
victim

2025-12-22

Inactive Since
in days

20

Avg Delay
between attack and claim

N/A

Infostealer
for victim with domain

0.0%

View Victims on World Map

View group statistics

Known Locations (2)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Benzona Ransomware Yes 2026-01-11 14:32:00 NGINX nginx 1.29.4 benzona6x5ggng3hx52h4mak5sgx5vukrdlrrd3of54g2uppqog2joyd.onion
favicon Support Chat Yes 2026-01-11 14:33:08 rwsu75mtgj5oiz3alkfpnxnopcbiqed6wllyoffpuruuu6my6imjzuqd.onion
Target (Available)
Top 5 Activity Sectors
  • Manufacturing 2
  • Technology 1
Top 5 Countries
  • RO flag Romania 4
  • CI flag Côte d'Ivoire 1
  • TW flag Taiwan, Province of China 1
  • IN flag India 1
  • IR flag Iran, Islamic Republic of 1
Heatmap (Available)
Ransom Notes (1)
Tools Used (Not Available)

No tools used available.

Vulnerabilities Exploited (0)

No vulnerabilities exploited available.

TTPs Matrix (0)

No TTPs available.

Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (5)
IP 1 MD5 1 PGP 1 SHA256 1 TOX 1
Type IOC
ip 179.43.139.126
md5 6e2189ab11f130ead644b1d5bd00f1ac
pgp 
-----BEGIN PUBLIC KEY----- 
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NEeX5fReBT10DekLoyw 
sFTI/F4ql+6fTKOgwbe+KrGro4qXg6CSzI4w2Gz7wGwjDuZgcnySDHeb9HIlZUr+ 
+2HJKVXE2+/Hqgr3BPInSZpcxkK5V88NB4jSG/c+/oNqoHRhLd+EoUWyq5kuCBFn 
ou9nutDHiaxTYDp9Sb/p0lLEoe5WIqLBiokUw2xCm+ALpXJrexQjT1cLhi2CH5YQ 
QQRKRAyKfNT7RzoRzlNX5gXnXFovlewBw8oNHkTY20kOmc2wC/InZYEBZmx5kdBp 
k5BEg2wOe9Wl5zi/EmNqtNSJFlz4Zvse8pWS0QbWa5PRaqAEmqb1zTG2SPicR2Br 
awIDAQAB 
-----END PUBLIC KEY-----
sha256 09f7432834ce15e701aa7fcc84a9c2441c1c7e0a9cb66a6211845be73d2597cc
tox 7308E8CFE8AA18D718B5EF44C34A2E5E2C90B7FDB150FA2EC31E995F5F4B23044A98802A4DF0
Victims (8)
Logo
taminsho.com Benzona
Discovery Date: 2025-12-22
[AI generated] N/A...
IR
Logo
platinumone.in Benzona
Discovery Date: 2025-12-06
[AI generated] PlatinumOne.in is a company based in India that provides outsourced sales force servi...
IN
Logo
SUNNYGO.COM.TW Benzona
Discovery Date: 2025-12-03
[AI generated] "SUNNYGO.COM.TW" is an online retailer based in Taiwan. The company specializes in th...
TW
Logo
suzuki-ploiesti.ro Benzona
Discovery Date: 2025-11-26
[AI generated] N/A...
RO
Logo
poliserv.ro Benzona
Discovery Date: 2025-11-26
[AI generated] N/A...
RO
Logo
mazda-ploiesti.ro Benzona
Discovery Date: 2025-11-26
[AI generated] N/A...
RO
Logo
dacia-ploiesti.ro Benzona
Discovery Date: 2025-11-26
[AI generated] N/A...
RO
Logo
sevci.org Benzona
Discovery Date: 2025-11-26
Santé, Espoir et Vie, dans un système de soin fort...
CI