Ransomware Group:  
Chaos



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | Yara Rules | Activity | Worldmap | Victims (4)


Sites

Favicon Title Type Available Last Visit FQDN Screenshot
CHAOS 🟢 2025-04-02 18:31:26.397902 hptqq2o2qjva7lcaaq67w36jihzivkaitkexorauw7b2yul2z6zozpqd.onion 📸
CHAOS 🟢 2025-04-02 18:32:28.200064 hptqq2o2qjva7lcaaq67w36jihzivkaitkexorauw7b2yul2z6zozpqd.onion 📸

Yara Rules

Activity over time

Worldmap

4 Victims

US flag

goosehead.com 

Company logo
Ransomware Group:

Discovery Date:

Goosehead Insurance, Inc. operates as a holding company for Goosehead Financial, LLC that engages in the provision of personal lines insurance agency services in the United States. The company offers homeowner's, automotive, dwelling property, flood, wind, earthquake, excess liability or umbrella, motorcycle, recreational vehicle, general liability, property, and life insurance products and services. The company was founded in 2003 and is headquartered in Westlake, Texas.

Victim:   |  Group: 
PK flag

Pak Technologies 

Company logo
Ransomware Group:

Discovery Date:

Sector: Not Found
PAK Technologies was established in 1980 in Milwaukee, WI. We began selling cleaners and restoration chemicals before incorporating private label blending and packaging. Since then, the company has grown and acquired BioPak, Inc., opened multiple facilities, and currently operates from its corporate headquarters and food processing facility located in Milwaukee.

Victim:   |  Group: 
US flag

Evans Distribution Systems 

Company logo
Ransomware Group:

Discovery Date:

Founded in 1929, Evans Distribution Systems is a provider of complete supply chain solutions including transportation, warehousing, distribution, staffing, value-added packaging, quality inspection, and more. The company is headquartered in Melvindale, Michigan.

Evans Distribution Systems has been previously claimed by Play for an attack estimated on 2024-09-05.

This could suggest a new attack, a cross-claim between brands by the same threat actor, or the recycling of previously leaked stolen data.

Update Date: 2025-03-31

Victim:   |  Group: 
US flag

Transcore 

Company logo
Ransomware Group:

Discovery Date:

Founded in 1939 and headquartered in Nashville, Tennessee, TransCore is a company that provides digital solutions and services to transportation departments and agencies around the world. The company provides solutions that aid in the development of express lanes, creating traffic systems, and managing vehicle-to-vehicle programs.

Victim:   |  Group: