PanelActoresCampanasMapaTTPs
Panel » Actores » darkpower
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
darkpower logo

darkpower

1 incidentes 0 paises 1 sectores ransomware Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
DarkPower is a ransomware group that first gained significant public attention and activity in early 2023, though its origins can be traced back to early 2020 as a less prominent strain. The group's primary motivation is financial gain through demanding ransom payments. DarkPower distinguishes itself by primarily employing the Nim programming language for its ransomware, which contributes to its agility and ability to evade detection, and by engaging in double extortion tactics. The group is characterized by its opportunistic targeting across various sectors globally rather than focusing on specific regions or industries, and it has not been publicly associated with aliases that lead to confusion with other threat actors.
Tecnicas MITRE
T1047, T1059.001, T1078, T1562.001, T1486

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

Czech RepublicAlgeriaEgyptFranceIsraelPeruPhilippinesTurkeyUnited States

Sectores atacados

Healthcare (1)

Sectores objetivo (SOCRadar)

Food ManufacturingOther Information ServicesMonetary Authorities-Central BankSoftware PublishersManufacturingConstructionPublic AdministrationEducational ServicesTextile & Fabric ManufacturingEnergy & Utilities

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com