Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Obscura

Obscura is a ransomware strain observed in 2025, written in Go and specifically targeting Windows domain controllers via the SYSVOL/NETLOGON share, using Curve25519 + XChaCha20 encryption with double-extortion tactics and a 10-day payment deadline.

Victims
33
 
First Discovered
2025-09-05
victim
Last Discovered
2026-01-11
victim
Inactive Since
124
days
Avg Delay
15.8
days
Infostealer
21.9%
victims with domain
Countries
14
hit
View Victims on World Map View Group Statistics
Attack Velocity — Last 12 months
Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Obscura Leaks Blog No 2026-04-28T07:25:26 obscurad3aphckihv7wptdxvdnl5emma6t3vikcf3c5oiiqndq6y6xad.onion
Target
Top 5 Activity Sectors
  • Technology 5
  • Energy 4
  • Construction 4
  • Business Services 4
  • Healthcare 4
Top 5 Countries
  • US flag United States 6
  • MY flag Malaysia 5
  • DK flag Denmark 3
  • TH flag Thailand 3
  • EG flag Egypt 2
Heatmap
Ransom Notes (1)
YARA Rules (1)
Indicators of Compromise (IoCs) (3)
Hash SHA256 1 tox 2
Type IOC
Hash SHA256 c00a2d757349bfff4d7e0665446101d2ab46a1734308cb3704f93d20dc7aac23
tox 7521730C07CF45D363A627F32B3102F3F7FA72F36C2C5F9EAB0C7FBA4668527F62A90EF333E6
tox AE55FC0EB1C25A5B081650108F9081E236DECE1CE08D2E185A6F15B9FB48E700210BED374643
Victims (33)
Logo
Revoil GR
Obscura
Discovered: 2026-01-11 (4mo ago)  ·  Attack est.: 2025-12-24
Revoil trades fuels and lubricants through its network of petrol stations, which consists of more th…
Logo
CleverPower DK
Obscura
Discovered: 2026-01-11 (4mo ago)  ·  Attack est.: 2025-12-15
Technology leader for modern energy infrastructure…
Logo
Trend Import Export RO
Obscura
Discovered: 2026-01-11 (4mo ago)  ·  Attack est.: 2025-12-16
IT company specializing in enterprise solutions and hardware…
Logo
[Redacted] #1927 TH
Obscura
Discovered: 2026-01-11 (4mo ago)  ·  Attack est.: 2025-12-24
[Redacted]…
Logo
STC Concrete Product TH
Obscura
Discovered: 2026-01-11 (4mo ago)
STC Concrete Product Public Company Limited engages in the manufacture and distribution of precast c…
Logo
REDtone MY
Obscura
Discovered: 2026-01-11 (4mo ago)
REDtone International is a telecommunications service provider for to niche markets.…
Logo
cle**rp**er.eu
Obscura
Discovered: 2025-12-15 (5mo ago)
Technology leader for modern energy infrastructure…
Logo
k*m**w.com
Obscura
Discovered: 2025-12-15 (5mo ago)
Transportation & Warehousing…
Logo
ACE Forwarding US
Obscura
Discovered: 2025-12-12 (5mo ago)  ·  Attack est.: 2025-11-19
Ace Forwarding offers several methods of protecting your freight. Full-service crating and repackagi…
Logo
Startek Engineering Inc. TW
Obscura
Discovered: 2025-12-12 (5mo ago)  ·  Attack est.: 2025-12-03
STARTEK is a worldwide leading company in the fingerprint identification industry, dedicated to deve…
Logo
StanleyCo Malaysia MY
Obscura
Discovered: 2025-12-12 (5mo ago)  ·  Attack est.: 2025-12-04
StanleyCo Malaysia provides expert accounting, tax advisory, company incorporation, and compliance s…
Logo
New Obscura 2.0!
Obscura
Discovered: 2025-12-12 (5mo ago)
We present the new version of Obscura 2.0. Faster encryption mechanisms, bugs fixed in the first ver…
Logo
New Toyo International Holdings Ltd SG
Obscura
Discovered: 2025-11-01 (6mo ago)
Revenue: $221.7kk | Leak Size: 2 GB | Status: Pending | Time Left: 6d 17h 27m 32s…
Logo
Thompson Dorfman Sweatman CA
Obscura
Discovered: 2025-10-30 (6mo ago)
Revenue: $31.2kk | Leak Size: 250 GB | Status: Pending | Time Left: 8d 3h 57m 25s…
Logo
Federal Auto Holdings Berhad MY
Obscura
Discovered: 2025-10-29 (6mo ago)
Revenue: $41.8kk | Leak Size: 6 GB | Status: Pending | Time Left: 7d 18h 57m 21s…
Logo
Cape Dara Resort Pattaya TH
Obscura
Discovered: 2025-10-20 (6mo ago)
Revenue: $25.2kk | Leak Size: 80 GB | Status: Pending | Time Left: 8d 6h 57m 24s…
Logo
relationmedia.dk DK
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
meamargroup.com EG
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $30kk | Leak Size: xx GB | Status: Published…
Logo
plazadental.com US
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
heavenly-dental.com US
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
thefixingcompany.com IE
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
eastdesign.com.my MY
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
espectral.pt PT
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: $<5kk | Leak Size: xx GB | Status: Published…
Logo
michigancityin.gov US
Obscura
Discovered: 2025-10-13 (7mo ago)
Revenue: ?? | Leak Size: 450 GB | Status: Published…
Logo
EAST Design Architect Sdn. Bhd MY
Obscura
Discovered: 2025-09-19 (7mo ago)
Design agency in Malaysia, Penang…
Logo
Espectral PT
Obscura
Discovered: 2025-09-19 (7mo ago)
Espectral specializes in providing testing and measurement equipment, focusing on sectors such as te…
Logo
RelationMedia A/S DK
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-07-16
RelationMedia A/S is the leading agency in Denmark within sales forces, merchandising, marketing, da…
Logo
Rulmaksan Makina TR
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-09-01
Rulmaksan Makina is a company that operates in the Consumer Services industry.…
Logo
The Fixing Company IE
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-08-29
The Fixing Company is an Irish provider of premium fixing solutions specifically designed for the co…
Logo
HeavenlyDental US
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-08-29
Dental clinics in San Jose…
Logo
Plazadental US
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-08-29
Dental clinics in San Jose…
Logo
WZV Warndt DE
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-08-29
Der WasserZweckVerband Warndt ist ein kommunaler Zweckverband, dessen Hauptaufgabe die Trinkwasserve…
Logo
MeamarGroup EG
Obscura
Discovered: 2025-09-05 (8mo ago)  ·  Attack est.: 2025-08-27
Specializes in real estate development, contracting, and investment services. The company aims to se…