jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT 33 indicators and references

APTTrail: APT 33 indicators and references

Ioc 1 min lectura apt-33
Fecha
18 Jun 2026
Actor
apt-33
Tipo
Ioc
Pais
Iran
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-33Actor
IranPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT 33. Aliases observados: APT 33. Conteo por tipo: domain: 99, ipv4: 1, url: 1.

Key Points

  • https://app.any.run/tasks/c761d00f-4897-4c9e-8468-9172fcce21d7/
  • https://blog.telsy.com/meeting-powerband-the-apt33-net-powerton-variant/
  • https://blog.trendmicro.com/trendlabs-security-intelligence/more-than-a-dozen-obfuscated-apt33-botnets-used-for-extreme-narrow-targeting/
  • https://go.recordedfuture.com/hubfs/reports/cta-2019-0626.pdf
  • https://hyas.com/news/hunting-apt33-campaign-infrastructure/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT 33. Aliases observados: APT 33. Conteo por tipo: domain: 99, ipv4: 1, url: 1.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainadmindirector.comAPTTrail
Domainakadnsplugin.comAPTTrail
Domainalsalam.ddns.netAPTTrail
Domainaramcojobs.ddns.netAPTTrail
Domainavailsqaapi.premieredigital.netAPTTrail
Domainazure-dnszones.comAPTTrail
Domainbackupaccount.netAPTTrail
Domainbackupnet.ddns.netAPTTrail
Domainbecomestateman.comAPTTrail
Domainbistbotsproxies.ddns.netAPTTrail
Domainboeing.servehttp.comAPTTrail
Domainbusinessscards.comAPTTrail
Domaincardchsk.comAPTTrail
Domaincardkuys.comAPTTrail
Domainceoadminoffice.comAPTTrail
Domainchromup.comAPTTrail
Domaincustomermgmt.netAPTTrail
Domaindailystudy.orgAPTTrail
Domaindigitalcodecrafters.comAPTTrail
Domaindiplomatsign.comAPTTrail
Domaindyn-corp.ddns.netAPTTrail
Domaindyncorp.ddns.netAPTTrail
Domaineventmonitoring.orgAPTTrail
Domainfucksaudi.ddns.netAPTTrail
Domaingefurrinn.comAPTTrail
Domainglobal-careers.orgAPTTrail
Domaingooglechromehost.ddns.netAPTTrail
Domaingooglmail.netAPTTrail
Domaingroupchiefexecutive.comAPTTrail
Domainhellocookies.ddns.netAPTTrail

Referencias

Diamond Model

Adversary
apt-33
Ver perfil →
Victim
APTTrail: APT 33 indicators and references
Iran
Capability
Ioc
Infrastructure
admindirector.com
akadnsplugin.com
alsalam.ddns.net
aramcojobs.ddns.net

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain admindirector.com APTTrail VT OffSec SOCRadar
Domain akadnsplugin.com APTTrail VT OffSec SOCRadar
Domain alsalam.ddns.net APTTrail VT OffSec SOCRadar
Domain aramcojobs.ddns.net APTTrail VT OffSec SOCRadar
Domain availsqaapi.premieredigital.net APTTrail VT OffSec SOCRadar
Domain azure-dnszones.com APTTrail VT OffSec SOCRadar
Domain backupaccount.net APTTrail VT OffSec SOCRadar
Domain backupnet.ddns.net APTTrail VT OffSec SOCRadar
Domain becomestateman.com APTTrail VT OffSec SOCRadar
Domain bistbotsproxies.ddns.net APTTrail VT OffSec SOCRadar
Domain boeing.servehttp.com APTTrail VT OffSec SOCRadar
Domain businessscards.com APTTrail VT OffSec SOCRadar
Domain cardchsk.com APTTrail VT OffSec SOCRadar
Domain cardkuys.com APTTrail VT OffSec SOCRadar
Domain ceoadminoffice.com APTTrail VT OffSec SOCRadar
Domain chromup.com APTTrail VT OffSec SOCRadar
Domain customermgmt.net APTTrail VT OffSec SOCRadar
Domain dailystudy.org APTTrail VT OffSec SOCRadar
Domain digitalcodecrafters.com APTTrail VT OffSec SOCRadar
Domain diplomatsign.com APTTrail VT OffSec SOCRadar
Domain dyn-corp.ddns.net APTTrail VT OffSec SOCRadar
Domain dyncorp.ddns.net APTTrail VT OffSec SOCRadar
Domain eventmonitoring.org APTTrail VT OffSec SOCRadar
Domain fucksaudi.ddns.net APTTrail VT OffSec SOCRadar
Domain gefurrinn.com APTTrail VT OffSec SOCRadar
Domain global-careers.org APTTrail VT OffSec SOCRadar
Domain googlechromehost.ddns.net APTTrail VT OffSec SOCRadar
Domain googlmail.net APTTrail VT OffSec SOCRadar
Domain groupchiefexecutive.com APTTrail VT OffSec SOCRadar
Domain hellocookies.ddns.net APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-33 en el blog → Ver apt-33 en IntelTracker → URL IntelTracker: app.any.run→ URL IntelTracker: blog.telsy.com→ URL IntelTracker: blog.trendmicro.com→ URL IntelTracker: go.recordedfuture.com→ URL IntelTracker: hyas.com→ URL IntelTracker: otx.alienvault.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: app.any.run→ Fuente OSINT: blog.telsy.com→ Fuente OSINT: blog.trendmicro.com→ Fuente OSINT: go.recordedfuture.com → Buscar apt-33 en APTTrail → Repositorio APTTrail → Mas incidentes en Iran → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen