Uptime Hamster: 15d 10h 54mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza NoName057

NoName057

0 incidentes 0 paises 0 sectores apt RU Ultimo: -
Aliases: 05716nnm, Nnm05716, NoName057(16), NoName05716, NoName, mySingleMessenger, NorthKorea vs Samsung, http, apt-unk2
Ver en IntelTracker → APTTrail →
NoName057 is a pro-Russian hacktivist collective that publicly emerged in March 2022, primarily conducting politically motivated Distributed Denial of Service (DDoS) attacks against entities perceived as anti-Russian. The group's primary objective is to disrupt online services and spread propaganda aligned with Russian state narratives. Operating with a crowdsourced model, NoName057 recruits volunteers, often incentivized with cryptocurrency, to participate in their campaigns using their custom DDoSia tool. This approach, along with their disciplined operational tempo and occasional reconnaissance prior to attacks, distinguishes them from many other hacktivist groups. While they largely operate independently in the Russian cybercrime landscape, they have occasionally collaborated with other groups like Killnet, XakNet, Muddy Water, CyberAv3ngers, and ServerKillers. The group is also tracked under aliases such as NoName057(16), 05716nnm, Nnm05716, and NoName. Pattern-of-life analysis su

Aliases del actor

05716nnmNnm05716NoName057(16)NoName05716NoNamemySingleMessengerNorthKorea vs Samsunghttpapt-unk2

Actores similares

apt-unk2actor · 1noname057-16actor · 1apt-45actor · 2apt-c-27actor · 2apt-c-01actor · 2apt-c-12actor · 1apt-18actor · 1apt-1877teamactor · 1apt-27actor · 1apt-30actor · 1

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / leak siteunknownduckduckgo.comNoName057(16)
DLS / leak siteunknownduckduckgo.comNoName057(16)
DLS / leak siteupnitter.netHackmanac: #HackTuesday Hack Tuesday: Week 17 - 23 Jun 2026 374 cyber attacks across 62 countries The most active threat actor last week was NoName057(16) claiming responsibility for 38 cyber attacks. The USA is the most affected country, accounting for 21.4% of incidents, with 80 cyber attacks. The Gov / Mil / LE sector is the most targeted, accounting for 19.5% of incidents with 73 cyber attacks. The estimated Critical cyber attacks account to 54 (14.4% of the total).
X/Twitterupx.comHackmanac: #HackTuesday Hack Tuesday: Week 17 - 23 Jun 2026 374 cyber attacks across 62 countries The most active threat actor last week was NoName057(16) claiming responsibility for 38 cyber attacks. The USA is the most affected country, accounting for 21.4% of incidents, with 80 cyber attacks. The Gov / Mil / LE sector is the most targeted, accounting for 19.5% of incidents with 73 cyber attacks. The estimated Critical cyber attacks account to 54 (14.4% of the total).
Malware asociado
webmonitor, Smoke Loader, win.wannacryptor, win.limerat, Smoke Loader, Agent Tesla
Tecnicas MITRE
T1453, T1105 - Ingress Tool Transfer, T1095 - Non Application Layer Protocol, T1497 - Virtualization/Sandbox Evasion, T1001, TA0001
CVEs relacionadas
CVE-2025-64669, CVE-2025-5777, CVE-2025-34067, CVE-2025-2857, CVE-2025-2783, CVE-2025-26466
Tipo
apt
Pais origen
RU
Motivacion
-
Impacto
150
Actualizado
Thu, 18 De

Paises objetivo (SOCRadar)

United Arab EmiratesArmeniaArgentinaAustriaAustraliaAzerbaijanBangladeshBelgiumBelarusCanada

Sectores objetivo (SOCRadar)

Food ManufacturingOther Information ServicesMonetary Authorities-Central BankCredit UnionsRail TransportationSoftware PublishersEnterprises & HoldingAir TransportationManufacturingPublic Administration