← Back to Ransomware Tracker

Maze

Inactive
Maze ransomware group is one of the most known ransomware gangs, they targeted organizations worldwide across many industries. Security researchers believed that Maze operates as an affiliated network model. MAZE was one of the first groups that made a 'Double Extortion Attack' involved Allied Universal, in November 2019, the group leaks their victim's data in the darknet. On November 1, 2020, MAZE announced an official press release that they are closing their operation. is malware targeting organizations worldwide across many industries. Security researchers claim that the threat actor behind the MAZE group is 'TA2101'.
60 Victims
Oct 21, 2019 First Discovered
Sep 11, 2020 Last Discovered
2015 Days Inactive
0% Infostealer
0/1 Sites Online
Top Countries
US 39
TH 3
AU 2
UAE 2
GB 2
CA 2
BR 1
PR 1
IT 1
BE 1
Top Sectors
Critical Manufacturing 15
Information Technology 10
Financial 7
Transportation Systems 5
Healthcare and Public Health 5
Education Facilities 3
Food and Agriculture 3
Energy 3
Commercial Facilities 2
Government Facilities 2
Known Locations (1)
xfr3txoorcyy7tikjgj5dk3rvo3vsrpyaxnclyohkbfp3h277ap4tiad.onion
Tools Used
Exfiltration
WinSCP
RMM-Tools
DiscoveryEnum
AdFind, Advanced IP Scanner, Bloodhound, PingCastle, PowerView, ShareFinder
Networking
CredentialTheft
Mimikatz, ProcDump
Offsec
Cobalt Strike, Metasploit, Meterpreter, PowerSploit
DefenseEvasion
LOLBAS
PsExec, WMIC
Intelligence
📄 1 Ransom Notes
View the actual ransom notes used by this group
Victims (60)
Fairfax County Public Schools
US Education Facilities Discovered: Sep 11, 2020 · Attack est.: Sep 11, 2020
Toledo Public Schools (TPS)
US Education Facilities Discovered: Sep 8, 2020 · Attack est.: Sep 8, 2020
Artech Information Systems
US Information Technology Discovered: Sep 1, 2020 · Attack est.: Sep 1, 2020
Canon
US Critical Manufacturing Discovered: Aug 5, 2020 · Attack est.: Aug 5, 2020
SK Hynix (semiconductor company)
Critical Manufacturing Discovered: Aug 1, 2020 · Attack est.: Aug 1, 2020
Strata Plus (strata management firm)
AU Commercial Facilities Discovered: Jul 25, 2020 · Attack est.: Jul 25, 2020
X-FAB
US Critical Manufacturing Discovered: Jul 5, 2020 · Attack est.: Jul 5, 2020
Thai Beverage Public Company
TH Food and Agriculture Discovered: Jul 1, 2020 · Attack est.: Jul 1, 2020
Ostermeir FZE (engineering firm)
UAE Critical Manufacturing Discovered: Jun 29, 2020 · Attack est.: Jun 29, 2020
VirtualGuard
US Emergency Services Discovered: Jun 28, 2020 · Attack est.: Jun 28, 2020
Xerox Corporation
GB Information Technology Discovered: Jun 25, 2020 · Attack est.: Jun 25, 2020
Electricity Generating Authority of Thailand
TH Energy Discovered: Jun 22, 2020 · Attack est.: Jun 22, 2020
FERSPED Inc. (Macedonian shipping company)
Transportation Systems Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
United Enertech (US construction company
US Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Domingos Martins
BR Government Facilities Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Daily Thermetrics
US Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
John Christner Trucking
US Transportation Systems Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Mead O'Brien, Inc
US Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Munoz Engineering PC
US Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Ahmed Almazrouei Group
Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Omnix Int'l
UAE Information Technology Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Westmoreland Mechanical Testing and Research, Inc.
US Critical Manufacturing Discovered: Jun 10, 2020 · Attack est.: Jun 10, 2020
Collabera
US Information Technology Discovered: Jun 8, 2020 · Attack est.: Jun 8, 2020
Westech International (US military contractor)
US Defense Industrial Base Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Electricity Generating Authority of Thailand
TH Energy Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
LG Electronics
Information Technology Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
WorldNet Telecommunications and ISP
PR Communication Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Columbus Metro Federal Credit Union
US Financial Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Webuild SpA (industrial group)
IT Critical Manufacturing Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Faxon Machining
US Critical Manufacturing Discovered: Jun 1, 2020 · Attack est.: Jun 1, 2020
Conducent
US Information Technology Discovered: May 29, 2020 · Attack est.: May 29, 2020
Max Linear (radio- frequency chip maker)
US Communication Discovered: May 24, 2020 · Attack est.: May 24, 2020
Pitney Bowes
US Information Technology Discovered: May 9, 2020 · Attack est.: May 9, 2020
HLB (Belgian accounting firm)
BE Financial Discovered: May 7, 2020 · Attack est.: May 7, 2020
Ashville Plastic Surgery Institute
US Healthcare and Public Health Discovered: May 5, 2020 · Attack est.: May 5, 2020
Plastic Surgeon Kristin Tarbet (Bellevue, Wash)
US Healthcare and Public Health Discovered: May 5, 2020 · Attack est.: May 5, 2020
Sparboe (egg producer)
US Food and Agriculture Discovered: May 1, 2020 · Attack est.: May 1, 2020
Banco BCR
CR Financial Discovered: May 1, 2020 · Attack est.: May 1, 2020
Dakota Carrier Network (DCN)
US Information Technology Discovered: Apr 26, 2020 · Attack est.: Apr 26, 2020
Tom Berkowitz Trucking Inc (whitinsville, MA)
US Transportation Systems Discovered: Apr 25, 2020 · Attack est.: Apr 25, 2020
Benefit Recovery Specialists Inc (BRSI)
US Financial Discovered: Apr 20, 2020 · Attack est.: Apr 20, 2020
Cognizant
US Information Technology Discovered: Apr 17, 2020 · Attack est.: Apr 17, 2020
Southeastern Wire (wire manufacturer)
US Critical Manufacturing Discovered: Apr 5, 2020 · Attack est.: Apr 5, 2020
Chubb
US Financial Discovered: Apr 1, 2020 · Attack est.: Apr 1, 2020
Berkine (Algerian Petroleum Joint Venture)
DZ Energy Discovered: Apr 1, 2020 · Attack est.: Apr 1, 2020
Henning Harders (freight and logistics firm)
AU Transportation Systems Discovered: Mar 15, 2020 · Attack est.: Mar 15, 2020
Hammersmith Medicines Research
GB Chemical Discovered: Mar 14, 2020 · Attack est.: Mar 14, 2020
VT San Antonio Aerospace (aerospace and defense contractor)
US Transportation Systems Discovered: Mar 7, 2020 · Attack est.: Mar 7, 2020
Affordacare Urgent Care Clinic
US Healthcare and Public Health Discovered: Feb 1, 2020 · Attack est.: Feb 1, 2020
Affordacare Urgent Care Clinics
US Healthcare and Public Health Discovered: Feb 1, 2020 · Attack est.: Feb 1, 2020
CU Collections
US Commercial Facilities Discovered: Feb 1, 2020 · Attack est.: Feb 1, 2020
Lakeland Community College
US Education Facilities Discovered: Jan 28, 2020 · Attack est.: Jan 28, 2020
Busch's Inc (Grocery chain)
US Food and Agriculture Discovered: Dec 9, 2019 · Attack est.: Dec 9, 2019
Southwire (cable and wire manufacturer)
US Critical Manufacturing Discovered: Dec 9, 2019 · Attack est.: Dec 9, 2019
City of Pensacola
US Government Facilities Discovered: Dec 7, 2019 · Attack est.: Dec 7, 2019
BST & CO (accounting firm)
US Financial Discovered: Dec 4, 2019 · Attack est.: Dec 4, 2019
Medical Diagnostic Laboratories
US Healthcare and Public Health Discovered: Dec 2, 2019 · Attack est.: Dec 2, 2019
Bird Construction
CA Critical Manufacturing Discovered: Dec 1, 2019 · Attack est.: Dec 1, 2019
Allied Universal
US Information Technology Discovered: Nov 1, 2019 · Attack est.: Nov 1, 2019
Andrew Agencies
CA Financial Discovered: Oct 21, 2019 · Attack est.: Oct 21, 2019
Source: Ransomware.live | Data cached and served by Digital Checkmark IT Services | Ransomware Tracker