PanelActoresCampanasMapaTTPs
Panel » Actores » blacktor
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
blacktor logo

blacktor

1 incidentes 1 paises 0 sectores ransomware Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
Blacktor is a low-profile data breach and extortion group first observed around late 2021. The group is primarily motivated by financial gain, conducting operations that involve encrypting victim data and maintaining a dedicated Tor-based leak site to facilitate double extortion. It is characterized by its minimal public threat intelligence coverage, making it distinct from more widely reported ransomware operations.
Tecnicas MITRE
T1566.001 (Spearphishing Attachment), T1078 (Valid Accounts), T1059 (Command and Scripting Interpreter), T1021 (Remote Services), T1486 (Data Encrypted for Impact)

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

Italy (1)

Paises objetivo (SOCRadar)

FranceIndonesiaItalyUnited StatesVenezuela, Bolivarian Republic of

Sectores objetivo (SOCRadar)

Construction of BuildingsSoftware PublishersHospitalsAccommodationManufacturingConstructionPublic AdministrationEducational ServicesEnergy & Utilities Insurance

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com