Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Benzona

None

Victims
14
 
First Discovered
2025-11-26
victim
Last Discovered
2026-01-30
victim
Inactive Since
73
days
Avg Delay
N/A
attack→claim
Infostealer
14.3%
victims with domain

View Victims on World Map

View group statistics

Known Locations (2)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Benzona Ransomware Yes 2026-04-13 02:01:09 NGINX nginx 1.29.4 benzona6x5ggng3hx52h4mak5sgx5vukrdlrrd3of54g2uppqog2joyd.onion
favicon Support Chat Yes 2026-04-13 01:31:20 rwsu75mtgj5oiz3alkfpnxnopcbiqed6wllyoffpuruuu6my6imjzuqd.onion
Target (Available)
Top 5 Activity Sectors
  • Manufacturing 2
  • Healthcare 2
  • Technology 1
  • Hospitality and Tourism 1
Top 5 Countries
  • RO flag Romania 4
  • CI flag Côte d'Ivoire 1
  • TW flag Taiwan, Province of China 1
  • IN flag India 1
  • IR flag Iran, Islamic Republic of 1
Heatmap (Available)
Ransom Notes (1)
Tools Used (Not Available)

No tools used available.

Vulnerabilities Exploited (0)

No vulnerabilities exploited available.

TTPs Matrix (0)

No TTPs available.

Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (5)
IP 1 MD5 1 PGP 1 SHA256 1 TOX 1
Type IOC
ip 179.43.139.126
md5 6e2189ab11f130ead644b1d5bd00f1ac
pgp 
-----BEGIN PUBLIC KEY----- 
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NEeX5fReBT10DekLoyw 
sFTI/F4ql+6fTKOgwbe+KrGro4qXg6CSzI4w2Gz7wGwjDuZgcnySDHeb9HIlZUr+ 
+2HJKVXE2+/Hqgr3BPInSZpcxkK5V88NB4jSG/c+/oNqoHRhLd+EoUWyq5kuCBFn 
ou9nutDHiaxTYDp9Sb/p0lLEoe5WIqLBiokUw2xCm+ALpXJrexQjT1cLhi2CH5YQ 
QQRKRAyKfNT7RzoRzlNX5gXnXFovlewBw8oNHkTY20kOmc2wC/InZYEBZmx5kdBp 
k5BEg2wOe9Wl5zi/EmNqtNSJFlz4Zvse8pWS0QbWa5PRaqAEmqb1zTG2SPicR2Br 
awIDAQAB 
-----END PUBLIC KEY-----
sha256 09f7432834ce15e701aa7fcc84a9c2441c1c7e0a9cb66a6211845be73d2597cc
tox 7308E8CFE8AA18D718B5EF44C34A2E5E2C90B7FDB150FA2EC31E995F5F4B23044A98802A4DF0
Victims (14)
Logo
casamedica.com.gt GT
Benzona
Discovered: 2026-01-30
[AI generated] "Casamedica.com.gt" is a Guatemala-based company that provides a range of medical equ…
Logo
empreinte-hotel.com FR
Benzona
Discovered: 2026-01-22
[AI generated] The Empreinte Hotel is a luxury establishment located in Orleans, France. This 4-star…
Logo
*a*ame*i*a.com.g*
Benzona
Discovered: 2026-01-22
No description available
Logo
ccbrt.org TZ
Benzona
Discovered: 2026-01-17
[AI generated] Comprehensive Community Based Rehabilitation in Tanzania (CCBRT) is a healthcare orga…
Logo
em***int*-ho***.com
Benzona
Discovered: 2026-01-17
No description available
Logo
cc***.or.*z
Benzona
Discovered: 2026-01-12
No description available
Logo
taminsho.com IR
Benzona
Discovered: 2025-12-22
[AI generated] N/A…
Logo
platinumone.in IN
Benzona
Discovered: 2025-12-06
[AI generated] PlatinumOne.in is a company based in India that provides outsourced sales force servi…
Logo
SUNNYGO.COM.TW TW
Benzona
Discovered: 2025-12-03
[AI generated] "SUNNYGO.COM.TW" is an online retailer based in Taiwan. The company specializes in th…
Logo
suzuki-ploiesti.ro RO
Benzona
Discovered: 2025-11-26
[AI generated] N/A…
Logo
poliserv.ro RO
Benzona
Discovered: 2025-11-26
[AI generated] N/A…
Logo
mazda-ploiesti.ro RO
Benzona
Discovered: 2025-11-26
[AI generated] N/A…
Logo
dacia-ploiesti.ro RO
Benzona
Discovered: 2025-11-26
[AI generated] N/A…
Logo
sevci.org CI
Benzona
Discovered: 2025-11-26
Santé, Espoir et Vie, dans un système de soin fort…