Uptime Hamster: 15d 13h 21mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza qlocker

qlocker

2 incidentes 1 paises 1 sectores ransomware Ultimo: 2026-06-29
Ver en IntelTracker → APTTrail →
Qlocker is a ransomware group that first emerged with widespread attacks in April 2021, exclusively targeting QNAP Network Attached Storage (NAS) devices. The group's primary motivation is financial gain, achieved by demanding Bitcoin ransoms for decryption keys. What sets Qlocker apart is its unique operational method: instead of deploying custom ransomware binaries, it abuses the legitimate 7-zip archival utility built into QNAP systems to encrypt files. This tactic allows the group to operate without introducing traditional malware, making detection challenging. Although initially believed to have ceased operations in May 2021, Qlocker resurfaced with new campaigns in early 2022.

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / onionupgvka2m4qt5fod2fltkjmdk4gxh5oxemhpgmnmtjptms6fkgfzdd62tad.onionqlocker
DLS / leak siteupransomware.anggipradana.comRansomware Group: qlocker
Tecnicas MITRE
T1486, T1070.004, T1018, T1080
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

Taiwan, Province of ChinaUnited States

Sectores atacados

Software (1)

Sectores objetivo (SOCRadar)

ManufacturingWholesale TradeRetailInformation ServicesFinanceProfessional&Technical ServicesEnterprises & HoldingEducational ServicesHealthCare & Social AssistanceOther

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com