ClickFix Threat Intelligence

jordiserrano.me ClickFix KAIROS IntelTracker

Ransomware Group: bianlian

Threat-actor 25 Jun 2026 1 min lectura bianlian

Fecha

25 Jun 2026

Actor

bianlian

Tipo

Threat-actor

Pais

Unknown

Sector

-

Confianza

high

50

Prioridad analitica

Baja

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

0IOCs

0TTPs

bianlianActor

UnknownPais

Executive Summary

Perfil del grupo segun ransomware.anggipradana.com.

Key Points

Ransomware Dashboard

Grupo Ransomware: bianlian

Perfil del grupo segun ransomware.anggipradana.com.

Campo	Valor
Alias
Pais
Estado

Descripcion

BianLian ransomware operations began in late 2021. The group practices multi-pronged extortion, demanding payment for a decryptor, as well as the non-release of stolen data. The ransomware group hosts a public, TOR-based, blog to post victim identities and stolen data. Somewhat unique to BianLian at the time of their launch was their inclusion of an I2P mirror for their blog.

Referencias

Ransomware Dashboard

Diamond Model

Adversary

bianlian

Ver perfil →

Victim

Ransomware Group: bianlian

Capability

Threat-actor

Infrastructure

Sin infraestructura confirmada

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

3 enlaces

IntelTracker / OSINT link

enlace asociado al actor

IntelTracker / OSINT link

ransomware.anggipradana.com

enlace asociado al actor

Ransomware Group: bianlian

Victima mismo actor

Ransom Notes: bianlian (1 notes from ThreatLabz)

Referencias y enlaces

→ Perfil del actor bianlian en el blog → Ver bianlian en IntelTracker → URL IntelTracker: ransomware.anggipradana.com → Fuente OSINT: ransomware.anggipradana.com → Buscar bianlian en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog

← Volver al panel de inteligencia

Incidentes recientes