Ransomware Group:  
Maze



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | External Information | Tools | Yara Rules | Ransom Note(s) | Activity | Worldmap | Victims (60)

Maze ransomware group is one of the most known ransomware gangs, they targeted organizations worldwide across many industries. Security researchers believed that Maze operates as an affiliated network model. MAZE was one of the first groups that made a 'Double Extortion Attack' involved Allied Universal, in November 2019, the group leaks their victim's data in the darknet. On November 1, 2020, MAZE announced an official press release that they are closing their operation. is malware targeting organizations worldwide across many industries. Security researchers claim that the threat actor behind the MAZE group is 'TA2101'.


Sites

Favicon Title Available Last Visit FQDN Screenshot
None 🔴 2021-05-01 00:00:00.000000 xfr3txoorcyy7tikjgj5dk3rvo3vsrpyaxnclyohkbfp3h277ap4tiad.onion N/A

External information

Tools used

Discovery RMM Tools Defense Evasion Credential Theft OffSec Networking LOLBAS Exfiltration
AdFind Mimikatz Cobalt Strike PsExec WinSCP
Advanced IP Scanner ProcDump Metasploit WMIC
Bloodhound Meterpreter
PingCastle PowerSploit
PowerView
ShareFinder

This information is provided by Ransomware-Tool-Matrix

Yara Rules

Ransom Note(s)

Activity over time

Worldmap

60 Victims

US flag

Fairfax County Public Schools 

Company logo
Ransomware Group:

Discovery Date: 2020-09-11 00:00

Group: 
US flag

Toledo Public Schools (TPS) 

Company logo
Ransomware Group:

Discovery Date: 2020-09-08 00:00

Group: 
US flag

Artech Information Systems 

Company logo
Ransomware Group:

Discovery Date: 2020-09-01 00:00

Group: 
US flag

Canon 

Company logo
Ransomware Group:

Discovery Date: 2020-08-05 00:00

Group: 
 flag

SK Hynix (semiconductor company) 

Company logo
Ransomware Group:

Discovery Date: 2020-08-01 00:00

Group: 
AU flag

Strata Plus (strata management firm) 

Company logo
Ransomware Group:

Discovery Date: 2020-07-25 00:00

Group: 
US flag

X-FAB 

Company logo
Ransomware Group:

Discovery Date: 2020-07-05 00:00

Group: 
TH flag

Thai Beverage Public Company 

Company logo
Ransomware Group:

Discovery Date: 2020-07-01 00:00

Group: 
UAE flag

Ostermeir FZE (engineering firm) 

Company logo
Ransomware Group:

Discovery Date: 2020-06-29 00:00

Group: 
US flag

VirtualGuard 

Company logo
Ransomware Group:

Discovery Date: 2020-06-28 00:00

Group: 
GB flag

Xerox Corporation 

Company logo
Ransomware Group:

Discovery Date: 2020-06-25 00:00

Group: 
TH flag

Electricity Generating Authority of Thailand 

Company logo
Ransomware Group:

Discovery Date: 2020-06-22 00:00

Sector: Energy

Group: 
 flag

FERSPED Inc. (Macedonian shipping company) 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

United Enertech (US construction company 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
BR flag

Domingos Martins 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

Daily Thermetrics 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

John Christner Trucking 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

Mead O'Brien, Inc 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

Munoz Engineering PC 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
 flag

Ahmed Almazrouei Group 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
UAE flag

Omnix Int'l 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

Westmoreland Mechanical Testing and Research, Inc. 

Company logo
Ransomware Group:

Discovery Date: 2020-06-10 00:00

Group: 
US flag

Collabera 

Company logo
Ransomware Group:

Discovery Date: 2020-06-08 00:00

Group: 
US flag

Westech International (US military contractor) 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Group: 
TH flag

Electricity Generating Authority of Thailand 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Sector: Energy

Group: 
 flag

LG Electronics 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Group: 
PR flag

WorldNet Telecommunications and ISP 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Group: 
US flag

Columbus Metro Federal Credit Union 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Sector: Financial

Group: 
IT flag

Webuild SpA (industrial group) 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Group: 
US flag

Faxon Machining 

Company logo
Ransomware Group:

Discovery Date: 2020-06-01 00:00

Group: 
US flag

Conducent 

Company logo
Ransomware Group:

Discovery Date: 2020-05-29 00:00

Group: 
US flag

Max Linear (radio- frequency chip maker) 

Company logo
Ransomware Group:

Discovery Date: 2020-05-24 00:00

Group: 
US flag

Pitney Bowes 

Company logo
Ransomware Group:

Discovery Date: 2020-05-09 00:00

Group: 
BE flag

HLB (Belgian accounting firm) 

Company logo
Ransomware Group:

Discovery Date: 2020-05-07 00:00

Sector: Financial

Group: 
US flag

Ashville Plastic Surgery Institute 

Company logo
Ransomware Group:

Discovery Date: 2020-05-05 00:00

Group: 
US flag

Plastic Surgeon Kristin Tarbet (Bellevue, Wash) 

Company logo
Ransomware Group:

Discovery Date: 2020-05-05 00:00

Group: 
US flag

Sparboe (egg producer) 

Company logo
Ransomware Group:

Discovery Date: 2020-05-01 00:00

Group: 
CR flag

Banco BCR 

Company logo
Ransomware Group:

Discovery Date: 2020-05-01 00:00

Sector: Financial

Group: 
US flag

Dakota Carrier Network (DCN) 

Company logo
Ransomware Group:

Discovery Date: 2020-04-26 00:00

Group: 
US flag

Tom Berkowitz Trucking Inc (whitinsville, MA) 

Company logo
Ransomware Group:

Discovery Date: 2020-04-25 00:00

Group: 
US flag

Benefit Recovery Specialists Inc (BRSI) 

Company logo
Ransomware Group:

Discovery Date: 2020-04-20 00:00

Sector: Financial

Group: 
US flag

Cognizant 

Company logo
Ransomware Group:

Discovery Date: 2020-04-17 00:00

Group: 
US flag

Southeastern Wire (wire manufacturer) 

Company logo
Ransomware Group:

Discovery Date: 2020-04-05 00:00

Group: 
US flag

Chubb 

Company logo
Ransomware Group:

Discovery Date: 2020-04-01 00:00

Sector: Financial

Group: 
DZ flag

Berkine (Algerian Petroleum Joint Venture) 

Company logo
Ransomware Group:

Discovery Date: 2020-04-01 00:00

Sector: Energy

Group: 
AU flag

Henning Harders (freight and logistics firm) 

Company logo
Ransomware Group:

Discovery Date: 2020-03-15 00:00

Group: 
GB flag

Hammersmith Medicines Research 

Company logo
Ransomware Group:

Discovery Date: 2020-03-14 00:00

Sector: Chemical

Group: 
US flag

VT San Antonio Aerospace (aerospace and defense contractor) 

Company logo
Ransomware Group:

Discovery Date: 2020-03-07 00:00

Group: 
US flag

Affordacare Urgent Care Clinic 

Company logo
Ransomware Group:

Discovery Date: 2020-02-01 00:00

Group: 
US flag

Affordacare Urgent Care Clinics 

Company logo
Ransomware Group:

Discovery Date: 2020-02-01 00:00

Group: 
US flag

CU Collections 

Company logo
Ransomware Group:

Discovery Date: 2020-02-01 00:00

Group: 
US flag

Lakeland Community College 

Company logo
Ransomware Group:

Discovery Date: 2020-01-28 00:00

Victim:   |  Group: 
US flag

Busch's Inc (Grocery chain) 

Company logo
Ransomware Group:

Discovery Date: 2019-12-09 00:00

Group: 
US flag

Southwire (cable and wire manufacturer) 

Company logo
Ransomware Group:

Discovery Date: 2019-12-09 00:00

Group: 
US flag

City of Pensacola 

Company logo
Ransomware Group:

Discovery Date: 2019-12-07 00:00

Group: 
US flag

BST & CO (accounting firm) 

Company logo
Ransomware Group:

Discovery Date: 2019-12-04 00:00

Sector: Financial

Group: 
US flag

Medical Diagnostic Laboratories 

Company logo
Ransomware Group:

Discovery Date: 2019-12-02 00:00

Group: 
CA flag

Bird Construction 

Company logo
Ransomware Group:

Discovery Date: 2019-12-01 00:00

Group: 
US flag

Allied Universal 

Company logo
Ransomware Group:

Discovery Date: 2019-11-01 00:00

Group: 
CA flag

Andrew Agencies 

Company logo
Ransomware Group:

Discovery Date: 2019-10-21 00:00

Sector: Financial

Group: