Daixin Active
Primarily targets US healthcare sector. CISA advisory issued.1
Total Victims
2022-06-01
First Seen
2026-03-07
Last Seen
0
Known TTPs
18.6d
Avg Delay
0
Negotiations
ONION URLS
232fwh5cea3ub6qguz3pynijxfzl2uj3c73nbrayipf3gq25vtq2r4qd.onion
7ukmkdtyxdkdivtjad57klqnd3kdsmq6tp45rrsxqnu76zzv3jvitlqd.onion
TOOLS
SSH tunnels
Rclone
FILE EXTENSIONS
.daixin
ACTIVITY TIMELINE
TOP SECTORS
TOP COUNTRIES
ACTIVITY HEATMAP
| Date | Victim Name | Country | Sector | Status |
|---|---|---|---|---|
| 2026-03-07 | Sapphire Group | Switzerland | Insurance | Published |
No TTPs data
No YARA rules
No IoCs
No ransom notes