APT / THREAT GROUP
Explorer
1
aliases
Intelligence Profile
Ransomware
Threat Analysis
Explorer is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Explorer
Hitachi Energy ITT600 Explorer
CISA Alerts· Jun 4, 2026
Unpatched NTLM Coercion in Windows search: URI Handler, Same Bug, No CVE, No Fix
Huntress Blog· Jun 2, 2026
Unpatched NTLM Leakage in Windows search: URI Handler, Same Bug, No CVE, No Fix
Huntress Blog· Jun 2, 2026
CISA Adds Seven Known Exploited Vulnerabilities to Catalog
CISA Alerts· May 20, 2026
Microsoft tests Windows Explorer speed, performance improvements
BleepingComputer· Apr 20, 2026
Microsoft still working to fix Windows Explorer white flashes
BleepingComputer· Mar 9, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
Explorer
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.