PanelActoresCampanasMapaTTPs
Panel » Actores » adminlocker
ArsenalExploitsTTP MatrixKillChainMapaActoresSSLBLRansomLookRansomwhereAlertasCyberNews
adminlocker logo

adminlocker

1 incidentes 0 paises 0 sectores ransomware Ultimo: 2026-06-25
Ver en IntelTracker → APTTrail →
AdminLocker is a ransomware group that first emerged around December 2021, operating as a small, seemingly independent group rather than a Ransomware-as-a-Service model. Its primary motivation is financial gain through encrypting victim data. A distinguishing characteristic is its use of single-extortion tactics, encrypting files without publicly documented data exfiltration, a practice that contrasts with many modern ransomware operations. The group appends unique extensions such as .admin1, .admin2, .admin3, .1admin, .2admin, or .3admin to encrypted files.
Tecnicas MITRE
T1047, T1071.001, T1003.001, T1562.001, T1105, T1486

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
0
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises objetivo (SOCRadar)

United Arab EmiratesArgentinaAzerbaijanBrazilChileColombiaEcuadorIsraelPeruSingapore

Sectores objetivo (SOCRadar)

Energy & Utilities ManufacturingRetailInformation ServicesFinanceProfessional&Technical ServicesEnterprises & HoldingEducational ServicesHealthCare & Social AssistanceOther

URLs nuevas detectadas en IntelTracker

ransomware.anggipradana.com