Ransomware Group intelligence
Malas
InactiveTrack Malas with 170 published victims and 1 known leak locations in a single intelligence view.
Overview
Malas is tracked by Breach House as a ransomware group with 170 published victims.
Russian Federation is currently the most targeted country in this dataset.
1 known leak locations are currently associated with this group.
Top Countries
Interactive distribution based on the currently visible victims list.
Known Leak Locations (1)
| Label | Type | Availability | Links |
|---|---|---|---|
| Leak location 1 | Onion service | Unknown | malas2urovbyyavjzaezkt5ohljvyd5lt7vv7mnsgbf2y4bwlh72doqd.onion |
Top Activity Sectors
No sector intelligence available.
Ransom Notes (0)
▼No ransom notes available for this group.
Tools Used
▼No tools used available.
YARA Rules (0)
▼No YARA rules available.
Indicators of Compromise (0)
▼No IoCs available for this group.
Negotiation Chats (0)
▼No negotiation chats available.
Research Sources
No external research sources linked yet.
Victims (170)
Search, filter and paginate the victim timeline for Malas.
| Type | Target | Discovered | Country | Business Category | Intel Link |
|---|---|---|---|---|---|
| Ransomware | Fort Rolins Collection Agency id6461 View details | Indonesia | Communication / Marketing | ||
|
Fort Rolins Collection Agency is a collection agency in Indonesia operating in the Communication / Marketing sector. Its public Facebook page says it offers services including skip tracing and repossession or collection of vehicles and motorcycles, indicating a focus on debt recovery and asset recovery support. The firm is associated with collection services rather than general marketing activity. It was listed as a ransomware victim associated with malas. |
|||||
| Ransomware | Compañía Agricola San Felipe id6460 View details | Agriculture / Food | |||
|
Compañía Agrícola San Felipe S.A. is a Colombian agribusiness based in Palmira, Valle del Cauca. The company operates in the agriculture sector and focuses on the cultivation, harvesting, processing, and sale of sugarcane and related byproducts. Its public company profile also describes it as a producer and seller of sugarcane. In the threat-intelligence index, it was listed as a ransomware victim associated with malas. |
|||||
| Ransomware | Banco Azzoaglio id3 View details | Italy | Finance / Legal / Insurance | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Ларина id4 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Utair id5 View details | Russian Federation | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | The Sound Organisation id6 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Angle Metal Mfg. id7 View details | Manufacturing / Engineering | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Красный Восток Агро id8 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Petromiralles id9 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | nanoCAD id10 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Baggio id11 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ЖБИ2-Инвест id12 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Город Кафе id13 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Diete-Siepmann id14 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Fitser id15 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | MHWEB id16 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Pergler id17 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Имеди id18 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Altia id19 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Евроэкспо id20 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Aster Cucine id21 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | KondorCS id22 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ФГУП “ЦНИИХМ” id23 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Custom Manufacturing & Engineering, Inc id24 View details | Manufacturing / Engineering | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Копчёнов id25 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ArCloud id26 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Гласс Фурнитура id27 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | LunarWeb id28 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Oasis Ads Media id29 View details | Communication / Marketing | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Azzurra Group id30 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ConnectTo id31 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Сервиста id32 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Amersport id33 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Studio Negri e Associati id34 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Hoteles Globales id35 View details | Hospitality / Food & Beverage / Tourism | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | HostingPerTe id36 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Sita Software id37 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Exset id38 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Fraport Skyliners id39 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | D&G impianti elettrici id40 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | RepcoLite id41 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Sallemi Carburanti id42 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | BEI Srl id43 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Bicom id44 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Transitus Group id45 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | spw.ru id46 View details | Russian Federation | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Mappy Italia id47 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | cashbackAPP id48 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Bleu Blanc id49 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | KriaaNet Inc id50 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Hardman’s id51 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Ямалтелеком id52 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Baur Hausverwaltung id53 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Grupo Fatecsa id54 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | InfinCE id55 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | SkyFORS id56 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Balbi Srl id57 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Steelgroup id58 View details | Manufacturing / Engineering | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | СКППК id59 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | DSSL id60 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Kouros id61 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Johnston Technical Services id62 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | BE.iT SA id63 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Horseman Sim id64 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Zite Media id65 View details | Communication / Marketing | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Трансбалт id66 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Формекс id67 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Pasquetti Sarti & Partners id68 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Herold Druck id69 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | paulmitchell.ru id70 View details | Russian Federation | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Nu-Pro Group id71 View details | United Kingdom | Communication / Marketing | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Studio Eco Perucca id72 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Axon Certified Auditors id73 View details | Finance / Legal / Insurance | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Studio Rossetti e Partners id74 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Riboli srl id75 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | meta-spb id76 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Studio Consulenza id77 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | 3Punto6 id78 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Gallagher & Co Consultants id79 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Evropoly id80 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Псковпассажиравтотранс id81 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Cosmos Hotel Group id82 View details | Hospitality / Food & Beverage / Tourism | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ICT-LabS id83 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Mobalpa Biarritz id84 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | FEA srl id85 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Grassi srl id86 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Tycoon Group id87 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Fresh-Heads IT id88 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Vegliolux id89 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | AVM Software & Technology id90 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ТрансКом-Авиа id91 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Specialinsert id92 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Totality Solutions id93 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | СК БлагоДать id94 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Астра id95 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Универсалресурс id96 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | TCG id97 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | PMP Meccanica id98 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Axon id99 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | OPIT Solutions id100 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ISONA GmbH id101 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Терра-Минора id102 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Азимут НТ id103 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | BenarIT id104 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Asanger Modellbau id105 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Iris Key Solutions id106 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Невский Альянс id107 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | NTD SA id108 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ATE Elettronica id109 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Answerpro id110 View details | Communication / Marketing | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Onubo s.r.l. id111 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Гис Нефтесервис id112 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Commerciale Ferramenta id113 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | KomGarant id114 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Froese & Partner id115 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | BMW Алдис id116 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ВК Логистик id117 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | SBG Global id118 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Winner Italia id119 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | SA.FI id120 View details | Finland | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Rivas Boquete SL id121 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | TitanPower id122 View details | Energy | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Qball Technologies id123 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Villa Grazioli id124 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Accurate Section Benders id125 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | INFINREAL Immobilien GmbH id126 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Evology Manufacturing id127 View details | Manufacturing / Engineering | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Omniglobe Business Solutions id128 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | happy-snack.ru id129 View details | Russian Federation | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | Loeje Trust SA id130 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Legato id131 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Boarding Concept id132 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | NEXT OS id133 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | International Cargo Equipment id134 View details | Transportation / Travel / Logistics | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | NTA srl id135 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Altarix id136 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Confindustria Energia id137 View details | Italy | Other | ||
|
using Zimbra vulnerability |
|||||
| Ransomware | TBIT Services id138 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | JvG Consulting id139 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | FinRe Consulting id140 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | RusExport Ltd id141 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Next Generation Srl id142 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Wishmaster id143 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Business Travel Solutions id144 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Гудвин-Нева id145 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Etanova id146 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Studio Papa id147 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | reg22 id148 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Hotel Smeraldo id149 View details | Hospitality / Food & Beverage / Tourism | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Chiltern Networks id150 View details | Telecommunications | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | radiosvet id151 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Wpat id152 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Spectris Business Systems id153 View details | Services | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Мебельснаб id154 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Orcutt Winslow id155 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Mangum Construction id156 View details | Construction / Real Estate | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | AMET id157 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Preference Portugal id158 View details | Communication / Marketing | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Км Профиль id159 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Livitek id160 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Chernoff Thompson Architects id161 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Dalim Software GmbH id162 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Propac S.r.l. id163 View details | Communication / Marketing | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | MetaContratas id164 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | ISG Software Group id165 View details | IT | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | еКредит id166 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | IPG Automotive GmbH id167 View details | Manufacturing / Engineering | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | AViSTO id168 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | BeeVoip id169 View details | Other | |||
|
using Zimbra vulnerability |
|||||
| Ransomware | Anstel id170 View details | Other | |||
|
using Zimbra vulnerability |
|||||