jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: apolloshadow indicators and references

APTTrail: apolloshadow indicators and references

Ioc 1 min lectura apolloshadow
Fecha
18 Jun 2026
Actor
apolloshadow
Tipo
Ioc
Pais
United States
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
1TTPs
apolloshadowActor
United StatesPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a apolloshadow. Aliases observados: apolloshadow, atg26, blue python, kazuar, kypton, snake, storm-0156, uroburos, venomous bear, wainscot, waterbug, waterbug. Conteo por tipo: domain: 203, file_path: 52, ipv4: 4, url: 9.

Key Points

  • http://artemonsecurity.com/snake_whitepaper.pdf
  • http://info.baesystemsdetica.com/rs/baesystems/images/snake_whitepaper.pdf
  • https://blog.google/threat-analysis-group/continued-cyber-activity-in-eastern-europe-observed-by-tag/
  • https://blog.sekoia.io/turla-new-phishing-campaign-eastern-europe/
  • https://blog.talosintelligence.com/tinyturla-full-kill-chain/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a apolloshadow. Aliases observados: apolloshadow, atg26, blue python, kazuar, kypton, snake, storm-0156, uroburos, venomous bear, wainscot, waterbug, waterbug. Conteo por tipo: domain: 203, file_path: 52, ipv4: 4, url: 9.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain61paris.frAPTTrail
Domainacademyawards.effers.comAPTTrail
Domainaccessdest.strangled.netAPTTrail
Domainadgf.amAPTTrail
Domainadstore.twilightparadox.comAPTTrail
Domainagony.compress.toAPTTrail
Domainarchive-articles.linkpc.netAPTTrail
Domainarctic-zone.bbsindex.comAPTTrail
Domainarinas.tkAPTTrail
Domainauberdine.etowns.netAPTTrail
Domainav.master.dns-cloud.netAPTTrail
Domainavmaster.dns-cloud.netAPTTrail
Domainbadget.ignorelist.comAPTTrail
Domainbaltdefcol.webredirect.orgAPTTrail
Domainbedrost.comAPTTrail
Domainbestfunc.slyip.netAPTTrail
Domainbigpen.gaAPTTrail
Domainblackerror.ignorelist.comAPTTrail
Domainbooking.etowns.orgAPTTrail
Domainbooking.strangled.netAPTTrail
Domainbookstore.strangled.netAPTTrail
Domainbranter.tkAPTTrail
Domainbronerg.tkAPTTrail
Domainbug.ignorelist.comAPTTrail
Domainbuy-new-car.comAPTTrail
Domaincaduff-sa.chjeepcarlease.comAPTTrail
Domaincarleasingguru.comAPTTrail
Domaincars-online.zapto.orgAPTTrail
Domaincelestyna.tkAPTTrail
Domainceremon.2waky.comAPTTrail

Referencias

Diamond Model

Adversary
apolloshadow
Ver perfil →
Victim
APTTrail: apolloshadow indicators and references
United States
Capability
Ioc
1 TTPs MITRE
Infrastructure
61paris.fr
academyawards.effers.com
accessdest.strangled.net
adgf.am

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 61paris.fr APTTrail VT OffSec SOCRadar
Domain academyawards.effers.com APTTrail VT OffSec SOCRadar
Domain accessdest.strangled.net APTTrail VT OffSec SOCRadar
Domain adgf.am APTTrail VT OffSec SOCRadar
Domain adstore.twilightparadox.com APTTrail VT OffSec SOCRadar
Domain agony.compress.to APTTrail VT OffSec SOCRadar
Domain archive-articles.linkpc.net APTTrail VT OffSec SOCRadar
Domain arctic-zone.bbsindex.com APTTrail VT OffSec SOCRadar
Domain arinas.tk APTTrail VT OffSec SOCRadar
Domain auberdine.etowns.net APTTrail VT OffSec SOCRadar
Domain av.master.dns-cloud.net APTTrail VT OffSec SOCRadar
Domain avmaster.dns-cloud.net APTTrail VT OffSec SOCRadar
Domain badget.ignorelist.com APTTrail VT OffSec SOCRadar
Domain baltdefcol.webredirect.org APTTrail VT OffSec SOCRadar
Domain bedrost.com APTTrail VT OffSec SOCRadar
Domain bestfunc.slyip.net APTTrail VT OffSec SOCRadar
Domain bigpen.ga APTTrail VT OffSec SOCRadar
Domain blackerror.ignorelist.com APTTrail VT OffSec SOCRadar
Domain booking.etowns.org APTTrail VT OffSec SOCRadar
Domain booking.strangled.net APTTrail VT OffSec SOCRadar
Domain bookstore.strangled.net APTTrail VT OffSec SOCRadar
Domain branter.tk APTTrail VT OffSec SOCRadar
Domain bronerg.tk APTTrail VT OffSec SOCRadar
Domain bug.ignorelist.com APTTrail VT OffSec SOCRadar
Domain buy-new-car.com APTTrail VT OffSec SOCRadar
Domain caduff-sa.chjeepcarlease.com APTTrail VT OffSec SOCRadar
Domain carleasingguru.com APTTrail VT OffSec SOCRadar
Domain cars-online.zapto.org APTTrail VT OffSec SOCRadar
Domain celestyna.tk APTTrail VT OffSec SOCRadar
Domain ceremon.2waky.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apolloshadow en el blog → Ver apolloshadow en IntelTracker → URL IntelTracker: artemonsecurity.com→ URL IntelTracker: info.baesystemsdetica.com→ URL IntelTracker: blog.google→ URL IntelTracker: blog.sekoia.io→ URL IntelTracker: blog.talosintelligence.com→ URL IntelTracker: blog.talosintelligence.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: artemonsecurity.com→ Fuente OSINT: info.baesystemsdetica.com→ Fuente OSINT: blog.google→ Fuente OSINT: blog.sekoia.io → Buscar apolloshadow en APTTrail → Repositorio APTTrail → Mas incidentes en United States → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters