| SYMBOL | COMMON_NAME | aka. SYNONYMS |
APT73 is a ransomware group that has publicly identified 12 victims and launched its data leak site on April 25th. The DLS bears a striking resemblance to that of LockBit, likely to leverage LockBit's reputation and attract potential affiliates. The rationale for this design mimicry is unclear, but it may be intended to signal operational parity with LockBit to inspire trust among low-level criminals. APT73 was formed by an alleged former LockBit affiliate following law enforcement's "Operation Cronos" in February 2024.
There are currently no families associated with this actor.
| 2024-11-08
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: www[.]baldinger-ag[.]ch APT73 |
| 2024-10-29
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: www[.]legilog[.]fr APT73 |
| 2024-10-29
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: www[.]trinitesolutions[.]com APT73 |
| 2024-10-29
⋅
RedPacket Security
⋅
https://www.redpacketsecurity.com/apt73-ransomware-victim-sokkakreatif-com/ APT73 |
| 2024-10-29
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: www[.]scopeset[.]de APT73 |
| 2024-10-24
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: modplan[.]co[.]uk APT73 |
| 2024-10-24
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: hpecds[.]com APT73 |
| 2024-10-24
⋅
RedPacket Security
⋅
[APT73] – Ransomware Victim: mgfsourcing[.]com APT73 |
| 2024-06-27
⋅
QuoIntelligence
⋅
Analyzing the Shift in Ransomware Dynamics: The Impact of Law Enforcement and Future Outlooks APT73 |