Skip to content

Hide Navigation Hide TOC

QDoor (b6c70553-69b7-4c6d-8c56-bf7b90a0f586)

A network tunneling backdoor used by Blacksuit ransomware operators, capable of collecting system information and establishing connections with a command and control server.[ConnectWise LinkedIn September 25 2024]

Cluster A Galaxy A Cluster B Galaxy B Level
QDoor (b6c70553-69b7-4c6d-8c56-bf7b90a0f586) Tidal Software SafePay Ransomware Actors (7015d001-9dcc-4361-9d27-4799d73ec426) Tidal Groups 1
QDoor (b6c70553-69b7-4c6d-8c56-bf7b90a0f586) Tidal Software BlackSuit Ransomware Actors (1d751794-ce94-4936-bf45-4ab86d0e3b6e) Tidal Groups 1