Ransomware Intelligence

akira

Ransomware group profile

650Victims
RussiaSource country
68Impact score
Also Known As
Megazord
GOLD SAHARA
Howling Scorpius
PUNK SPIDER
Akira
Punk Spider

Description

Storm-1567 is a sophisticated ransomware group recognized for its targeted attacks on critical infrastructure and high-value organizations. They employ stealthy techniques, advanced encryption, and social engineering to increase the chances of ransom payments from victims.

Key insights

  • Utilizes double extortion tactics, encrypting data and exfiltrating sensitive information to pressure victims.
  • Targets sectors such as healthcare and finance using phishing and zero-day exploits.
  • Employs custom ransomware variants, notably Akira, which use hybrid encryption methods.
  • Gain initial access through exploiting VPN vulnerabilities and credential harvesting.
  • Known for rapid attack execution, often completing full encryption in under four hours.
  • Regularly updates attack methodologies to evade detection and improve effectiveness.

Industries

EducationEnergy & UtilitiesFinancial ServicesHealthcareHospitalityManufacturingOtherProfessional ServicesRetail & E-CommerceTechnologyTransportation

Threat Level & Status Breakdown

For akira · Based on incidents in selected period

3.9threat level
Aggressiveness10/ 10
Lethality0.1/ 10
Criticality1.1/ 10

Status Breakdown

Data Leaked2.6%17
Claimed12.6%82
First seenJun 2025
Last seenMay 2026
Avg ransom
Payment rate
Statusactive
Sophistication0
Last updatedJun 2, 2026

Recent activity

Monthly attack count for akira in the selected period

650Total attacks
76peak in Sep
54.2avg / month
↑ 12 vs first month
JunJulAugSepOctNovDecJanFebMarAprMay020406080

Intelligence

IOCs, YARA/Sigma rules, and related families for akira

  1. 7dbaf66d546198ab687209fbe7504faed0bb72a9ae620bdb0d238cfa4f63d5f3
  2. 236c5938f204e51b5d3485a2d9bfdb75c66f2a7a6da0a4d2b82c276e43569c66
  3. 04ad5cb7b9aea4f38d890edb46116c21a719a676843829294bedadc1bec21d18
  4. e57340a208ac9d95a1f015a5d6d98b94
  5. 8531c673cc8412f891f3fa70cd5ea00b5485ccf42a567a2fb1106e7e5304e165
  6. 0b4f99a4f629c7b7a218704ab4e3a735b35974fcc8ae09c3b7d8f399964cbed3
  7. ba5f068cdc0661242f94bc73941b1e203aeaace9b604acfb8c9502430362dbc4
  8. c5a166c1de527105308e4f6d44cb0413deef6f6ea880947eeee87df8634a5ea2
  9. ead06ba0ec0f43c45c2fe774cc51c011b57367c347baf24d959c12c136f56ece
  10. c8418f60d313b1f854a6fc6c3c0cd63f351b2993f44e3ad56bb96eb992ae840f
  11. 9eccb3b73fa081781b0364faa05c675f0efe1114c877b91065c26ad5d8633748
  12. de746e47ba5d8ec56ec0e787258b42b128378069655b4f4a91c1f0b3a42a6e34
  13. a649c28970440f4a3b58bab037c418f9930e286a4c57436e278a6b7d996c949d
  14. 4d7a6316b532cd29060d2f6d086cd932cb90880899c3fc4f6e29c1fa5918c163
  15. 4ec402292537c6a582adad4966e95b60434b9165e0e309a8df16f9a94c16ade6
  16. 18051333e658c4816ff3576a2e9d97fe2a1196ac0ea5ed9ba386c46defafdb88
  17. 9fbf25131fd47c7a0ef72b3ffa7887be4ccf7b8cb0190460492e0991c21f1d22
  18. 77c2b86717c4f483e6f197172105bcb2a164828cd666284713172257c6250969
  19. 4cd235661936f47f1623c5f3641a9ae8b5a1bb4581f04cafdbf4499e778fbb26
  20. 1feee87449f929e84e88eedf442fd36303cc7b885b4e3ed07a9f1b4780929f50
  21. 69eeb97e5272fe54c3b1624862e88342b08fb3cf6cd7bb7ec66521bab3de4da8
  22. bc209326df8a240397db8081318b04a4152aff023fe0f3e7e4dafc2296ca7601
  23. 79491d8d34831c12dc72cf99c1e6287680272d224125c98a1d45a7904a151812
  24. cc4207bb68ce88d7d769a3d3c858c4ad4c0edae10dd5925135db05ca0613c902
  25. ff78da0b69b5e0316c0179d4f7b1825556b4ebee7e700c1a81b679860416e81c
  26. 8baeaa31cb41d1e4eb36b33780dcec3c5dfc3261b2d268883bb2188ff31af18b
  27. 0ee1d284ed663073872012c7bde7fac5ca1121403f1a5d2d5411317df282796c
  28. 94737a470b6d8baa52b9794a200e4677255b40cb3c70570e608696683d6ae456
  29. 3626676157c39face20ba28a0f617c707c56b9ee2fb2e26e5a3bad99c71bc029
  30. 5e1e3bf6999126ae4aa52146280fdb913912632e8bac4f54e98c58821a307d32
  31. 544d88d987d5251fa985a8b01cf3bdce715caed984f507ff8ea8e423749fe6f5
  32. 3298d203c2acb68c474e5fdad8379181890b4403d6491c523c13730129be3f75
  33. 162a2db401025a6ba181af6c372ca29bff172000422e7699e58ca019172834db
  34. 450b33e52307932dac50ed22c9b1c1fbc40f8ee4f75b46557574047b6465f6ab
  35. 142c5302ae8e2254796103f92499fa4467db9c1349b04e1c3496c3c84d7694bf
  36. 916310cb4b640b925f3815ae4af63bb0e8341ab5d92dcae355bcb3f2e62c700d
  37. 83babb4948e67eaeae8d199019777bce14aa574d53fa8eee147a0b2147e4bebd
  38. e9005d3dda50201fe12d29e46d2a32f980c92b09a963123ba8b7644972fe072c
  39. f4159bdee293286b234393f09974fcd6dab878f538208295c46d79cab2bd0e82
  40. 140471e87d9c698e285db693971d7deb2c4e32662237237d89a338c20ff6bdf9
  41. 614ac476bac559fc8ad177e5e74988da7d12db94e91906abc71155fdc706b120
  42. 764b12838019c625f80579e827eefbb284392618c257c4331e6546d9323e2ebd
  43. 8cf136767a6e0a75d05df220da10a187c24245ecf56b1b619a1f226c6bca76ad
  44. 2020f27fe42300c6d43c73e4fe8813f0f4b0c021d1b4532bddf3309a579b2c71
  45. fbeb923987ae1bffefc3bd7225556fa0ffd28cb68bc972e82e17c452de495ca9
  46. a4139557b12cc43de9c1c63853d06fe826b9add603804a45cc16a772950a6130
  47. 8f08a5515ffc9fd24222ac562c9eb58cd5ad7a859e4449040e0dc55a6a7dfc28
  48. b96b694eb21b3fe39e564b847c6d9c2cfa877d1dd3ebb3e4c57483882d8ebe16
  49. 6b9dc8ee728520ae37b877f4ac40b3320a7f71b89f693a40e25f884e97785332
  50. e03c0db578f415721513dd70a60019fff4fe0b0a39c688b8fc249e2908c4e9cb
  51. 9a7b93f77dd09503f0ead9fa739176d7879b4bb0a8b8adc90f8ed10e1174b239
  52. 6a7ab094e534b9637458909ca8da421ced59540ede6de4587c166444219f532b
  53. dfe6fddc67bdc93b9947430b966da2877fda094edf3e21e6f0ba98a84bc53198
  54. 4aecef9ddc8d07b82a6902b27f051f34
  55. cd2e56122c741187e5ba6303dd3f8b3b67e5312575023e62386c273e5ee57202
  56. 2ce52e57bb2ca339160933777ea3492c314cbf5ddad63133f9f73350a0d7067d
  57. af89bf44829457b20bf64b64df5f96609a30a6fd66716bdfa8a9099f652aeb48
  58. 81f06e74f63da97046acdc3ddf030b1a724b90e5b82114ce872c7febe7daef74
  59. 8681be64f52e95d59dfb3c81c506af3b1f6909de5636650b59f24c6f797f1097
  60. d30488c4266693070d2db135203513b4e5430bfff4e4c414afba797ab3de14a2
  61. e8139b0bc60a930586cf3af6fa5ea573
  62. f03b00913b35c006a8709060c9be4b8e28946abecc0bb14df0e2df4bc2c45a94
  63. e8aa678c1bb45fe47dc722f874894ec8609c9660e66e7b1af50613dc73e74abc
  64. 430acb142db319466010b3029f853f0dab401bca7b6404ecfeb7663a14b31a57
  65. 52a9bd1f5985dc06b068c0b3d1993628a1d5fa463b208d6eb2e5268b01507b10
  66. 9e1ddf491227a781f3914d8657769c7ec35394dbcfdddc87f54c40e2db1636b3
  67. 453982e39c4318e2ef81fbe3cb67c77e11837eec07d24a358252ab62a10f21cf
  68. 13d15dafaa15e713e53d150f558e903616797c5dec6adc588ece5d2abbf85e45
  69. 8d18d616ba59259f741c84e3bcae7f0116eb6e5a71f0396e3986b767c46518a5
  70. 6ee52aec01487816def0cbdac9471d6ec9d59b01a57650685baaa0ac4b740ad4
  71. 289591616b2ee5e53ea6e7ede2d5478659aac91de557b3c1e9423facfdbf1d52
  72. 5a3c18ecff4ce4ec144c50a1c84c12266b8f259da39e14840ce555735e11d18c
  73. 724697f85ca9c64ace7b768c6ae55c5c7cb726d90868d1f46a8a0083823a639d
  74. afe71724563646053288a7e7c4a21101d55fb4fd03388d57d7f0b63c9dcab6e3
  75. 2e7287a9a44bad7dc30e80c1e28449be8fe5d64f00abcbbf7c1d6bc9f2516389
  76. ab9e577334aeb060ac402598098e13b9
  77. 9de9975e216b3f8ff23adb612b4011489efc77a397aca2adb259c318131705fa
  78. 7912d7a3221851a33fa75d0291aad9e4950b3644f064b45a92cb31ec03895adf
  79. ab220f6fbcbdebe306a6b529ea66068daafe81a292564ad823c8c1eba4b30646
  80. 1a61b370663be4124a4cbcacfd358e5a583a54aa49474174333aeb43d7360d1d
  81. 3670669399974fc4ba582a19412b91a5f1c536fd9f5d00c823d30ea7c7836476
  82. 65f9ca9ec8933209d7deb0e9e2d2ff2ca9359efd2f0d15e7d73f76ee6cd7e7b2
  83. eb9894b4a6eeb29a321f62d0b0981647dee58c9c261f1da59d140a144ad28731
  84. 9f393516edf6b8e011df6ee991758480c5b99a0efbfd68347786061f0e04426c
  85. ffbe3bbbd5671b7bf840c0911a78ee01dcc2f0741677e74ee434873c5e9bcc43
  86. a530b2d65710a0a8053600174dc786c52035f1eb44a1a7148838066b7397496c
  87. 6a902e4e0d88785a140e493aa2013a6861c2ae4ee6e6d05ff657b14721bf195d
  88. 62e561f532b8c201b2cf3c08fe8e66c95241380f1af85f22362666a2d9d93634
  89. cc5d38a04a6e632eefc79e27e0c061135188a730c2c181fdeb55bb779ede1f2a
  90. f5abebc9b4f3be604d73103d7b7401f582a3956dcf79084b437afa49257e3f8f
  91. 2fcc402a01269b951d19f574969f82b44082e14c112b4e451523c592d6db4d48
  92. 18846cb94d097dcbd0bcb04ace4cf32d76fd935bdfe43f611b63a6c1c23ff390
  93. d173376d5d47421657e8cd50fdaaaf6b02a5aaf343d5cc70a40cff0218774530
  94. ec88ed2999570f1d3d55ca161a9a2fe5effbd69668a6c04b6f72694179d3795e
  95. 6ef5997c96a79c41c8f2cfb2c3f56d33dfec8dd76057ec40835589d9d3d3c591
  96. e1087c9d1fa05255df2c66f943d2f7b02d3cc22f4d5ed75799d10e93798524d8
  97. 5ff9733ca90dec27a4b54da856c21d33a73f3a2845c37d191af922e0e1c78fd6
  98. 131da83b521f610819141d5c740313ce46578374abb22ef504a7593955a65f07
  99. 87ee463c13d490842f36eba5ca03a2ed090b78f3fed0eef78ff7e74065191494
  100. da0f313e6f7794d17db8d28cbef43d149facc9db4a01f2396801306e5c6c6a1e
  101. 68d36736f8b77205962d5b812a93ed741da26da3492f57de8c91826278b9d997
  102. bc304ca3edb92e8dd93cf6cdb572894973d1e036f06375996317fb84c2801403
  103. 759305a8012dbf56252b7b02c0554e6c3739b3c06e065011a30c79a3f9e8be6e
  104. e43ce71e18abf6850d886e55a9966e5b517bf9656c8a31a8c022f64fcf7f8d03
  105. f86e9cb02b7d6d21bbcb1f6409c8f20efc3840c1ce6d20669f7b841df7f1a4be
  106. 86fab25f0adf95205c56d6a4e6f709619f4ff16d1af2d142da32e276458cb55b
  107. 7ec96b5c5af7876a88191e88a212bde8eab8ae07b7ce1a317965ec6f1e7b16c1
  108. 4bc5e094a3e20c0108453d9d3c80c67c0338e08a97e3a409e9ac29973af77665
  109. b7a45b3b17de08f895a7dfd252280abda18e12041666359389bb2bb32572e578
  110. 66617e5bac5f9cea9dcd85b494d284d6a172065f670f9e0a39d55bd0d3c0e40d
  111. 4bcaab305fab4feec2e5b250083a4f95da373dcb39ef02c5b726e3fdc3a83367
  112. f00d80e34d5903833e20ac728f8f62c828826d24dc8fbe497dc459d161e214d2
  113. 947577522079404c68527a8275ec2ea3138eb098e63ea4716587f51f6acd82b6
View full IOC feed123 total

TTPs & Attack Vectors

Tools, initial access, and MITRE ATT&CK techniques for akira

Collection

T1560

Archive Collected Data

Defense Evasion

T1070.001

Clear Windows Event Logs

T1112

Modify Registry

T1218

System Binary Proxy Execution

T1562.001

Disable or Modify Tools

T1562.002

Disable Windows Event Logging

Discovery

T1016

System Network Configuration Discovery

T1057

Process Discovery

T1083

File and Directory Discovery

T1087

Account Discovery

T1482

Domain Trust Discovery

Execution

T1047

Windows Management Instrumentation

T1059

Command and Scripting Interpreter

T1219_1

Remote Access Tools

Impact

N1064c6bd2c8dc50985e66e937dff430

Linux / ESXi Variants

N22f79a697b322559d291cb950476cab

Data Theft / Double Extortion

T1486

Data Encrypted for Impact

T1489

Service Stop

T1490

Inhibit System Recovery

Lateral Movement

T1021.001

Remote Desktop Protocol

T1570

Lateral Tool Transfer

Persistence

T1112_2

Modify Registry

T1136.001

Local Account

T1136.002

Domain Account

Privilege Escalation

T1003_1

OS Credential Dumping

T1558.003

Kerberoasting

Victims(200)

CompanyDomainCountryIndustryStatusDiscovered
Schacht Law OfficeUS United StatesProfessional Services
Unknown
5 days ago
Interstate RoofingUS United StatesOther
Unknown
5 days ago
Maschinen-StockertDE GermanyManufacturing
Unknown
6 days ago
GS Yuasa Lithium PowerJP JapanManufacturing
Unknown
6 days ago
Alpine AerotechUS United StatesManufacturing
Unknown
6 days ago
General DoorsUS United StatesManufacturing
Unknown
6 days ago
Northwest WoodworksUS United StatesManufacturing
Claimed
7 days ago
Gone Fishin' MarineUS United StatesHospitality
Unknown
7 days ago
Sunrise, Toscana Country Club,Andalusia Country Club.US United StatesHospitality
Unknown
8 days ago
Function EnterprisesUS United StatesOther
Unknown
12 days ago
GitisRU RussiaEducation
Claimed
12 days ago
Karlin FoodsUS United StatesOther
Unknown
12 days ago
Buffalo Niagara Convention CenterUS United StatesRetail & E-Commerce
Claimed
12 days ago
Sid Harvey'sUS United StatesRetail & E-Commerce
Unknown
14 days ago
TSG EnterprisesUS United StatesOther
Unknown
15 days ago
Acton ElectricalUS United StatesManufacturing
Claimed
15 days ago
Vacu - LugGB United KingdomManufacturing
Claimed
16 days ago
Healthtrax Fitness & WellnessUS United StatesRetail & E-Commerce
Unknown
16 days ago
Fox Valley Tax SolutionsUS United StatesProfessional Services
Unknown
19 days ago
Institute of Private Enterprise Developmentipedgy.comUS United StatesProfessional Services
Unknown
21 days ago

Page 1 of 10

Affected countries(87)

Countries where this group has been reported to target or leak victims.

🇦🇩Andorra🇦🇪United Arab Emirates🇦🇫Afghanistan🇦🇷ArgentinaAmerican Samoa🇦🇹Austria🇦🇺Australia🇧🇩Bangladesh🇧🇪Belgium🇧🇷Brazil🇧🇸Bahamas🇧🇿Belize🇨🇦Canada🇨🇭Switzerland🇨🇱Chile🇨🇳China🇨🇴Colombia🇨🇿Czech Republic🇩🇪Germany🇩🇰Denmark🇩🇿Algeria🇪🇨Ecuador🇪🇪Estonia🇪🇸Spain🇪🇹Ethiopia🇫🇮Finland🇫🇷France🇬🇧United Kingdom🇬🇪Georgia🇬🇷Greece🇬🇾Guyana🇭🇰Hong Kong🇭🇳Honduras🇭🇺Hungary🇮🇩Indonesia🇮🇪Ireland🇮🇱Israel🇮🇳India🇮🇸Iceland🇮🇹ItalyJersey🇯🇴Jordan🇯🇵Japan🇰🇪KenyaKorea, Republic ofLao People's Democratic Republic🇱🇰Sri Lanka🇱🇷Liberia🇱🇻Latvia🇲🇨MonacoMartinique🇲🇹Malta🇲🇽Mexico🇲🇾Malaysia🇳🇦Namibia🇳🇬Nigeria🇳🇮Nicaragua🇳🇱Netherlands🇳🇴Norway🇳🇿New Zealand🇵🇦Panama🇵🇪Peru🇵🇭Philippines🇵🇱PolandPuerto Rico🇵🇹Portugal🇷🇴Romania🇷🇸SerbiaRussian Federation🇸🇦Saudi Arabia🇸🇪Sweden🇸🇬Singapore🇸🇮Slovenia🇸🇰Slovakia🇸🇳Senegal🇹🇭Thailand🇹🇳Tunisia🇹🇷TurkeyTaiwan, Province of ChinaTanzania, United Republic of🇺🇦Ukraine🇺🇸United States🇺🇾UruguayVenezuela, Bolivarian Republic of🇻🇳Vietnam🇾🇪Yemen🇿🇦South Africa