Uptime Hamster: 1d 9h 17mDeploy: 13 Jul 2026 10:50Updated: 2026-07-13
Logo del actor de amenaza mallox

mallox

1 incidentes 0 paises 0 sectores ransomware RU Ultimo: 2026-06-29
Aliases: FARGO, Tohnichi, TargetCompany
Ver en IntelTracker → APTTrail →
Mallox is a ransomware group that emerged in May 2021, initially conducting human-operated attacks before evolving into a Ransomware-as-a-Service (RaaS) model by early 2023, actively recruiting affiliates on dark web forums like RAMP. The group's primary motivation is financial gain through double extortion, involving both data encryption and exfiltration. Mallox is particularly known for its focus on exploiting unsecured Microsoft SQL (MS-SQL) servers as a primary initial access vector. Researchers have used various names for this group, leading to aliases such as TargetCompany, FARGO, and Tohnichi.

Aliases del actor

FARGOTohnichiTargetCompany

Actores similares

targetcompanyransomware · 0

Canales, DLS e infraestructura asociada

Clasificacion automatica desde IntelTracker/APTTrail/OSINT. Estado real solo si viene indicado por la fuente.

TipoEstadoHost / enlaceTitle / ultimo titulo
DLS / leak siteunknownransomware.anggipradana.comRansomware Group: mallox
Tecnicas MITRE
T1003, T1022, T1573, T1547, T1566, T1078
CVEs relacionadas
CVE-2024-21338, CVE-2021-21974, CVE-2020-3992, CVE-2020-0618, CVE-2019-5544, CVE-2019-1068
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

United Arab EmiratesBolivia, Plurinational State ofBrazilCanadaSwitzerlandChinaColombiaGermanySpainFrance

Sectores objetivo (SOCRadar)

Construction of BuildingsFood ManufacturingOther Information ServicesSoftware PublishersHospitalsTransportation Equipment ManufacturingEnterprises & HoldingAir TransportationManufacturingConstruction

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com