Akira
Also known as Akira v2
Reports
80
First seen
May 22
Last seen
Jun 26
Motivation
financial, extortion, financial extortion
Targeting
Sectors
manufacturing ×10other ×5professional services ×5retail ecommerce ×4hospitality ×4financial services ×3media entertainment ×2healthcare ×2
Victim regions
United States ×23Guyana ×2Germany ×1Japan ×1United Kingdom ×1
Top ATT&CK techniques
T1486 Data Encrypted for Impact ×17T1566 Phishing ×11T1021 Remote Services ×9T1190 Exploit Public-Facing Application ×8T1078 Valid Accounts ×7T1110 Brute Force ×6T1021.001 Remote Services: Remote Desktop Protocol ×6T1133 External Remote Services ×6T1195 Supply Chain Compromise ×6T1562 Impair Defenses ×6T1562.001 Impair Defenses: Disable or Modify Tools ×5T1136 Create Account ×4
Indicators
filename ×120domain ×87cve ×46ip_v4 ×38hash_sha256 ×12hash_sha1 ×4registry_key ×3hash_md5 ×2
Indicator values are available on Pro and via the API.
Associated CVEs
CVE-2024-40766 (exploited)CVE-2024-40711 (exploited)CVE-2024-47575 (exploited)CVE-2024-50383 (exploited)CVE-2025-37899CVE-2026-11645 (exploited)CVE-2026-1340 (exploited)CVE-2026-20131 (exploited)CVE-2026-2441 (exploited)CVE-2026-34908 (exploited)CVE-2026-34909 (exploited)CVE-2026-34910 (exploited)CVE-2026-34926 (exploited)CVE-2026-35273 (exploited)CVE-2026-35616 (exploited)CVE-2026-3909 (exploited)CVE-2026-3910 (exploited)CVE-2026-39987 (exploited)CVE-2026-41091 (exploited)CVE-2026-44963
Recent reports
High