Ransomware Group: GUNRA

VICTIM NAME: Shinko Shoji

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the GUNRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to a company operating in the real estate sector based in Japan. The victim, identified as Shinko Shoji, was compromised on April 23, 2025, with the attack details timestamped precisely. The page includes a screenshot displaying internal information related to the breach, suggesting that sensitive data may have been accessed or extracted. The leak was discovered concurrently with the attack claim, indicating that the extortion campaign or data exfiltration was detected quickly.

Analyzing the available information, no explicit personal or PII data is revealed, but the leak might involve confidential company data or internal documents. There is no publicly available evidence of additional compromised systems or third-party infrastructure. The leak appears to be part of the group’s broader targeting efforts within the technology and real estate industries, emphasizing a focus on business-related data. The presence of download links or leaked data is suspected, although details or content specifics are not provided here. The inclusion of a screenshot indicates the attacker’s intent to demonstrate access or data extraction from the victim’s internal communications or systems.