Embargo
| Active | RaaS
Embargo is a Rust-based ransomware-as-a-service group that emerged in April 2024, primarily targeting US healthcare, manufacturing, and business services organizations using double extortion, assessed as a potential successor to BlackCat/ALPHV with over $34 million in ransom proceeds.
Victims
38
First Discovered
2024-04-21
victim
Last Discovered
2026-03-31
victim
Inactive Since
43
days
Avg Delay
7.9
days
Infostealer
29.7%
victims with domain
Countries
14
hit
Attack Velocity — Last 12 months
Known Locations (1)
| Favicon | Title | Type | Available | Last Visit | Server Info | FQDN | |
|---|---|---|---|---|---|---|---|
|
EMBARGO | Yes | 2026-05-13T22:39:56 | nginx |
embargobe3n5okxyzqphpmk3moinoap2snz5k6765mvtkk7hhi544jid.onion
|
Target
Top 5 Activity Sectors
- Technology 10
- Healthcare 7
- Business Services 5
- Manufacturing 5
- Financial Services 3
Top 5 Countries
-
United States
23
-
Singapore
2
-
India
1
-
Hungary
1
-
Lesotho
1
Heatmap
Ransom Notes (2)
Tools Used
| Discovery | RMM Tools | Defense Evasion | Credential Theft | OffSec | Networking | LOLBAS | Exfiltration |
|---|---|---|---|---|---|---|---|
|
|
|
s4killer (Minifilter Driver)
|
|
|
|
BCDEdit
ServiceControl (sc.exe)
|
|
YARA Rules (1)
Indicators of Compromise (IoCs) (1)
tox
1
| Type | IOC |
|---|---|
tox
|
9500B1A73716BCF40745086F7184A33EA0141B7D3F852431C8FDD2E1E8FAF9277E9FDC117B47
|
Victims (38)
Lagoon Amusement Park
, located in Farmington, Utah, is a historic family-owned park operating sinc…
Ludlum Measurements, Inc.
(LMI), founded in 1962 in Sweetwater, Texas, designs, manufactures, and s…
We connect synergistic technologies to power a cleaner tomorrow. As a leading supplier of affordable…
At Seclore, we believe that cybersecurity should revolve around what matters most—your data. Traditi…
USA DeBusk provides a comprehensive suite of industrial cleaning and infrastructure maintenance ser…
About Heart of America Medical Center
A non-profit hospital offering comprehensive medical service…
HAWAI'I UNIFIED is a licensed General Contractor, Electrical Contractor, Plumbing Contractor, Steel …
Founded in 1972, Rotary is one of the region’s leading oil and gas infrastructure services companies…
All Star Flooring, Inc. is a leading provider of commercial flooring solutions with over 35 years of…
Welcome to M&H Electric Fabricators, where we've been sparking innovation and powering up the automo…
Kingsmen Creatives designs roll-out retail environments based off their clients' needs and conceptua…
Based in Manchester, Great Britain, Insider technologies is a leading provider of big data, predicti…
One of Brazil's largest suppliers of technological systems, maintenance, manufacturing, assembly and…
Heritage South Credit Union was originally chartered in 1937 as the Avondale Employees Federal Credi…
Anne Grady Services provides a vast array of assistance for adults and children with intellectual di…
Heritage South Credit Union was originally chartered in 1937 as the Avondale Employees Federal Credi…
Al Ansari is a provider of integrated building, infrastructure and engineering solutions. The group …
Backyard Discovery is built for families. From a child’s first playset to structures that guard the …
American Associated Pharmacies (AAP) is a member-owned cooperative of over 2,000 independent pharmac…
Located in Northern Lower Michigan, Wexford County boasts a population of approximately 35,000, with…
Memorial Hospital and Manor celebrated its 50th Anniversary in 2010. Memorial Hospital was officiall…
Weiser Memorial Hospital is a full service not-for-profit community hospital that has been serving t…
Founded in 1917, Pioneer Balloon Company is the world's premier manufacturer of latex balloons, with…
The Summerville Police Department is committed to building relationships with community members whil…
Diligent Delivery Systems provides transportation services for businesses within varying industries.…
Gerard Perrier Industrie SA is a France-based company that provides electrical and electronic automa…
Marketing, Printing, Logistics - 1 TB+ databases, source code, client files…
Shamrock Trading Corporation is the parent company for a family of brands in transportation services…
Software Development - SQL BASES AND SOURCES 650 GB, LINK WILL BE AVAILABLE SOON…
Founded in 1922 and headquartered in Sacramento, California, Rex Moore is a family-owned and managed…
Firstmac Limited is an Australian owned company with experience in home and investment loans. They h…
Heavy Civil Contracting, Earthwork and Utilities - 2 TB data will be disclosed soon…