Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Donex

None

Victims
 

5

First Discovered
victim

2024-03-08

Last Discovered
victim

2024-03-08

Inactive Since
more than

1 year

Avg Delay
between attack and claim

12.4 days

Infostealer
for victim with domain

0.0%

View Victims on World Map

View group statistics

Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Donex ransomeware leakage - No 2025-06-01 21:18:38 g3h3klsev3eiofxhykmtenmdpi67wzmaixredk5pjuttbx7okcfkftqd.onion
Target (Available)
Top 5 Activity Sectors
  • Technology 2
  • Agriculture and Food Production 1
  • Transportation/Logistics 1
Top 5 Countries
  • BE flag Belgium 1
  • CZ flag Czechia 1
  • IT flag Italy 1
  • US flag United States 1
  • NL flag Netherlands 1
Heatmap (Available)
Ransom Notes (0)

No ransom notes available.

Tools Used (Not Available)

No tools used available.

Vulnerabilities Exploited (0)

No vulnerabilities exploited available.

TTPs Matrix (7)
This information is provided by Crocodyli & Ransomware.live
Execution Persistence Defense Evasion Credential Access Discovery Collection Impact
Windows Management Instrumentation Windows Services Obfuscated Files or Information Input Capture System Service Discovery Data Staged Data Encrypted for Impact
Command and Scripting Interpreter   Indicator Removal from Tools   Application Window Discovery Automated Collection Service Stop
Scripting   Embedded Payloads   System Network Configuration Discovery   Inhibit System Recovery
Native API   Masquerading   Remote System Discovery   Data Destruction
Shared Modules   Scripting   Process Discovery    
    Clear Windows Event Logs   System Information Discovery    
    File Deletion   File and Directory Discovery    
    Indirect Command Execution   Network Share Discovery    
    File and Directory Permissions Modification   Security Software Discovery    
    Abuse Elevation Control Mechanism        
    Disable or Modify Tools        
    Hidden Window        
Negotiation Chats (0)

No negotiation chats available.

YARA Rules (0)

No YARA rules available.

Indicators of Compromise (IoCs) (0)

No IoCs available for this group.

Victims (5)
Logo
vdhelm Donex
Discovery Date: 2024-03-08
Estimated Attack Date: 2024-02-22
Van der Helm is a 4PL logistic service provider with a limitless passion for transport and logistics...
NL
Logo
PFLEET Donex
Discovery Date: 2024-03-08
Estimated Attack Date: 2024-02-23
P-Fleet is a leader in expense and payment management solutions for commercial fleets, including tho...
US
Logo
elsapspa Donex
Discovery Date: 2024-03-08
Estimated Attack Date: 2024-02-24
Da oltre 50 anni, Elsap è un’impresa dedita alla rappresentanza e alla distribuzione di componenti e...
IT
Logo
CHOCOTOPIA Donex
Discovery Date: 2024-03-08
Estimated Attack Date: 2024-02-27
Chocotopia is a center of entertainment in the heart of Prague. You can visit here Museum of Chocola...
CZ
Logo
mirel Donex
Discovery Date: 2024-03-08
Estimated Attack Date: 2024-02-27
Nous sommes votre partenaire en matière de recrutement et de sélection. Nous nous déplaçons sans eng...
BE