Ransomware.live: ms13089

Victims

2

First Discovered

victim

2025-12-18

Last Discovered

victim

2025-12-18

Inactive Since

in days

0

Avg Delay

between attack and claim

N/A

Infostealer

for victim with domain

0.0%

Known Locations (1)

Favicon	Title	Type	Available	Last Visit	Server Info	FQDN
	MS13-089 Blog		Yes	2025-12-18 21:31:24	nginx 1.18.0	`msleakjir7pxbe6onlqe5uwgvdmy6nq4mnwfy7ojswbhnleenm77vgad.onion`

Target (Available)

Heatmap (Available)

Ransom Notes (0)

No ransom notes available.

Tools Used (Not Available)

No tools used available.

Vulnerabilities Exploited (0)

No vulnerabilities exploited available.

TTPs Matrix (0)

No TTPs available.

Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (1)

EMAIL 1

Type	IOC
`email`	`ms13@onionmail.org`

Victims (2)

dgpcommercialisti.it Ms13089

Discovery Date: 2025-12-18

Aree di specializzazione: contabilità, bilanci, dichiarazioni fiscali, incarichi di sindaco e reviso...

uro.com Ms13089

Discovery Date: 2025-12-18

Virginia Urology (VU) has a long history of providing quality care to the Greater Richmond metro are...

Ms13089 / Ms13-089

| Active

Victims

2

First Discovered

2025-12-18

Last Discovered

2025-12-18

Inactive Since

0

Avg Delay

N/A

Infostealer

0.0%

Known Locations (1)

Target (Available)

Heatmap (Available)

Ransom Notes (0)

Tools Used (Not Available)

Vulnerabilities Exploited (0)

TTPs Matrix (0)

Negotiation Chats (0)

YARA Rules (0)

Indicators of Compromise (IoCs) (1)

Victims (2)