Uptime Hamster: 15d 10h 51mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza quantum

quantum

2 incidentes 1 paises 0 sectores ransomware RU Ultimo: 2026-06-29
Aliases: Quantum Locker, APT DRAGONOK, DEV-0569, Conti, Quantum, Black Byte, Diavol, Black Basta, Ryuk (como FIN12)
Ver en IntelTracker → APTTrail →
Quantum is a ransomware group that emerged in August 2021 as a rebrand of the MountLocker ransomware. It is closely associated with the notorious Conti ransomware operation, with many of its members believed to be former Conti affiliates, and operates on a Ransomware-as-a-Service (RaaS) model. The group's primary motivation is financial extortion, achieved through the encryption of victim data and a 'double extortion' tactic that involves exfiltrating sensitive information and threatening its public release if a ransom is not paid. Quantum is particularly distinguished by the extreme speed of its attacks, often deploying ransomware within hours of initial network compromise, a characteristic that significantly reduces defenders' response time and sets it apart from many other ransomware operations. It cannot delete Volume Shadow Copies, a feature present in some other ransomware families.

Aliases del actor

Quantum LockerAPT DRAGONOKDEV-0569ContiQuantumBlack ByteDiavolBlack BastaRyuk (como FIN12)

Actores similares

apt-blackgearactor · 1apt-blacktechactor · 1apt-dragonokactor · 1blackbastaransomware · 523blackbyteransomware · 147BlackBastaactor · 2blackbyte-cruxactor · 1BlackTechapt · 1Blackwoodapt · 0Blackgearapt · 0

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / onionunknown22rnyep2aa2exx3fdm26p4onwjfmhciodb55v5l3w4iny7e5bxpg3yad.onionquantum
DLS / onionunknownquantum445bh3gzuyilxdzs5xdepf3b7lkcupswvkryf3n7hgzpxebid.onionquantum
DLS / leak siteupransomware.anggipradana.comRansomware Group: quantum
Tecnicas MITRE
T1566.001, T1078, T1047, T1027, T1486, T1105
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

United Arab EmiratesArgentinaAustraliaBelgiumCanadaChileChinaGermanyDominican RepublicSpain

Sectores objetivo (SOCRadar)

Construction of BuildingsOther Information ServicesSoftware PublishersEnterprises & HoldingAccommodationManufacturingConstructionPublic AdministrationAdministrative &Waste Management Educational Services

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com