Embargo
None
External information
Victims
27
First Discovered
victim2024-04-21
Last Discovered
victim2025-06-10
Avg Delay
between attack and claim6.4 days
Infostealer
for victim with domain21.7%
Known Locations (1)
| Favicon | Title | Type | Available | Last Visit | FQDN | |
|---|---|---|---|---|---|---|
|
EMBARGO | Yes | 2025-06-15 16:01:16 | embargobe3n5okxyzqphpmk3moinoap2snz5k6765mvtkk7hhi544jid.onion |
Target (Available)
Top 5 Activity Sectors
- Healthcare 6
- Manufacturing 5
- Business Services 4
- Technology 4
- Financial 2
Top 5 Countries
-
United States
16
-
Singapore
2
-
Australia
1
-
Germany
1
-
France
1
Heatmap (Available)
Ransom Notes (2)
Tools Used (Available)
| Discovery | RMM Tools | Defense Evasion | Credential Theft | OffSec | Networking | LOLBAS | Exfiltration |
|---|---|---|---|---|---|---|---|
|
|
|
s4killer (Minifilter Driver)
|
|
|
|
BCDEdit
ServiceControl (sc.exe)
|
|
Vulnerabilities Exploited (0)
No vulnerabilities exploited available.
TTPs Matrix (0)
No TTPs available.
Negotiation Chats (0)
No negotiation chats available.
YARA Rules (0)
No YARA rules available.
Indicators of Compromise (IoCs) (0)
No IoCs available for this group.
Victims (27)
rotaryeng.com.sg
Embargo
Discovery Date: 2025-06-10
Founded in 1972, Rotary is one of the region’s leading oil and gas infrastructure services companies...
allstarflooring.com
Embargo
Discovery Date: 2025-05-30
Estimated Attack Date: 2025-05-24
Estimated Attack Date: 2025-05-24
All Star Flooring, Inc. is a leading provider of commercial flooring solutions with over 35 years of...
M&H Electric Fabricators
Embargo
Discovery Date: 2025-05-30
Estimated Attack Date: 2025-05-23
Estimated Attack Date: 2025-05-23
Welcome to M&H Electric Fabricators, where we've been sparking innovation and powering up the automo...
Kingsmen Creatives Ltd.
Embargo
Discovery Date: 2025-05-14
Estimated Attack Date: 2025-05-02
Estimated Attack Date: 2025-05-02
Kingsmen Creatives designs roll-out retail environments based off their clients' needs and conceptua...
Insider Technologies Limited
Embargo
Discovery Date: 2025-03-09
Estimated Attack Date: 2025-02-27
Estimated Attack Date: 2025-02-27
Based in Manchester, Great Britain, Insider technologies is a leading provider of big data, predicti...
tequaly.com
Embargo
Discovery Date: 2025-02-25
Estimated Attack Date: 2025-02-20
Estimated Attack Date: 2025-02-20
One of Brazil's largest suppliers of technological systems, maintenance, manufacturing, assembly and...
myhscu.com
Embargo
Discovery Date: 2025-02-17
Estimated Attack Date: 2025-02-14
Estimated Attack Date: 2025-02-14
Heritage South Credit Union was originally chartered in 1937 as the Avondale Employees Federal Credi...
annegrady.org
Embargo
Discovery Date: 2025-02-16
Estimated Attack Date: 2025-02-05
Estimated Attack Date: 2025-02-05
Anne Grady Services provides a vast array of assistance for adults and children with intellectual di...
Heritage South Credit Union
Embargo
Discovery Date: 2025-02-14
Heritage South Credit Union was originally chartered in 1937 as the Avondale Employees Federal Credi...
alansarioman.com
Embargo
Discovery Date: 2025-01-09
Al Ansari is a provider of integrated building, infrastructure and engineering solutions. The group ...
backyarddiscovery.com
Embargo
Discovery Date: 2024-11-30
Estimated Attack Date: 2024-11-29
Estimated Attack Date: 2024-11-29
Backyard Discovery is built for families. From a child’s first playset to structures that guard the ...
American Associated Pharmacies
Embargo
Discovery Date: 2024-11-13
Estimated Attack Date: 2024-11-12
Estimated Attack Date: 2024-11-12
American Associated Pharmacies (AAP) is a member-owned cooperative of over 2,000 independent pharmac...
wexfordcounty.org
Embargo
Discovery Date: 2024-11-05
Located in Northern Lower Michigan, Wexford County boasts a population of approximately 35,000, with...
Memorial Hospital & Manor
Embargo
Discovery Date: 2024-11-05
Estimated Attack Date: 2024-11-04
Estimated Attack Date: 2024-11-04
Memorial Hospital and Manor celebrated its 50th Anniversary in 2010. Memorial Hospital was officiall...
weisermemorialhospital.org
Embargo
Discovery Date: 2024-09-30
Estimated Attack Date: 2024-09-04
Estimated Attack Date: 2024-09-04
Weiser Memorial Hospital is a full service not-for-profit community hospital that has been serving t...
pioneerworldwide.com
Embargo
Discovery Date: 2024-07-26
Founded in 1917, Pioneer Balloon Company is the world's premier manufacturer of latex balloons, with...
summervillepolice.com
Embargo
Discovery Date: 2024-07-26
The Summerville Police Department is committed to building relationships with community members whil...
diligentusa.com
Embargo
Discovery Date: 2024-07-11
Diligent Delivery Systems provides transportation services for businesses within varying industries....
gerard-perrier.com
Embargo
Discovery Date: 2024-07-04
Gerard Perrier Industrie SA is a France-based company that provides electrical and electronic automa...
dmedelivers.com
Embargo
Discovery Date: 2024-06-06
Marketing, Printing, Logistics - 1 TB+ databases, source code, client files...
shamrocktradingcorp.com
Embargo
Discovery Date: 2024-05-21
Shamrock Trading Corporation is the parent company for a family of brands in transportation services...
orga-soft.de
Embargo
Discovery Date: 2024-05-17
Software Development - SQL BASES AND SOURCES 650 GB, LINK WILL BE AVAILABLE SOON...
rexmoore.com
Embargo
Discovery Date: 2024-05-08
Founded in 1922 and headquartered in Sacramento, California, Rex Moore is a family-owned and managed...
firstmac.com.au
Embargo
Discovery Date: 2024-04-30
Firstmac Limited is an Australian owned company with experience in home and investment loans. They h...
mulfordconstruction.com
Embargo
Discovery Date: 2024-04-21
Estimated Attack Date: 2024-04-17
Estimated Attack Date: 2024-04-17
Heavy Civil Contracting, Earthwork and Utilities - 2 TB data will be disclosed soon...