Uptime Hamster: 14d 19h 29mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza darkpower

darkpower

2 incidentes 1 paises 1 sectores ransomware Ultimo: 2026-06-29
Aliases: https, www
Ver en IntelTracker → APTTrail →
DarkPower is a ransomware group that first gained significant public attention and activity in early 2023, though its origins can be traced back to early 2020 as a less prominent strain. The group's primary motivation is financial gain through demanding ransom payments. DarkPower distinguishes itself by primarily employing the Nim programming language for its ransomware, which contributes to its agility and ability to evade detection, and by engaging in double extortion tactics. The group is characterized by its opportunistic targeting across various sectors globally rather than focusing on specific regions or industries, and it has not been publicly associated with aliases that lead to confusion with other threat actors.

Aliases del actor

httpswww

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / onionunknownpowerj7kmpzkdhjg4szvcxxgktgk36ezpjxvtosylrpey7svpmrjyuyd.oniondarkpower
DLS / leak siteunknownransomware.anggipradana.comRansomware Group: darkpower
Tecnicas MITRE
T1047, T1059.001, T1078, T1562.001, T1486
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

Czech RepublicAlgeriaEgyptFranceIsraelPeruPhilippinesTurkeyUnited States

Sectores atacados

Healthcare (1)

Sectores objetivo (SOCRadar)

Food ManufacturingOther Information ServicesMonetary Authorities-Central BankSoftware PublishersManufacturingConstructionPublic AdministrationEducational ServicesTextile & Fabric ManufacturingEnergy & Utilities

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com