Islamic Hacker Army
Islamic Hacker Army is a hacktivist threat actor referenced in reporting on regional cyber conflict involving India, Iran, and Israel. The content describes it as one of the pro-Pakistan or anti-India groups active during India's Operation Sindoor, where it was named alongside other hacktivist and intrusion groups that attempted to breach Indian cyberspace. Separate reporting cited in the content also lists Islamic Hacker Army among groups targeting Iran, and states that the group breached IDF defense research computers. According to the provided content, Islamic Hacker Army claimed members in Venezuela, Indonesia, and Malaysia. Reported tooling and tradecraft include custom backdoors such as FalseFont and Powerless, use of wipers, and coordinated DDoS activity via botnets and vulnerability scanners. The content characterizes the group as part of broader hacktivist activity rather than clearly attributing it to a state, and no high-confidence nation-state attribution is directly established in the provided material. Known alias in the content: islamic_hacker_army.
Know when an actor pivots toward your sector
Mallory correlates actor tradecraft and target patterns against your stack, your sector, and your geography. See overlap before they land.
Targeting
Who, where, and (when attributed) which flag flies behind the operation. Pulled from open-source reporting and Mallory's analyst review.
Where they target
Geographies tied to known operations.
- 🇮🇳 India
Tradecraft
1 distinct technique observed across reporting, grouped by tactic. Hover any cell for the evidence excerpt; click through for MITRE's full description.
Associated malware families
2 malware families attributed to this actor across reporting.
Recent activity
4 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
Pan-Islamic hacktivist/proxy collective using global cloud/offshore infrastructure; described using custom backdoors and wipers plus DDoS and mass exploitation tooling against energy/telecom targets.
Islamic Hacker Army is a hacktivist group targeting Iranian organizations, likely using DDoS and data leak tactics.
Targets Israeli military research systems.
Named as a pro-Pakistan-aligned hacktivist group attempting cyber attacks on India during Operation Sindoor.
The version that knows your environment.
Match sector + geo + tech-stack targeting against your real footprint.
Every observed MITRE ATT&CK technique, grouped by tactic.
Families this actor is known to deploy, with IOCs and behavior.
CVEs this actor has used in known campaigns.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Domains, IPs, and hashes tied to this actor, refreshed continuously.