jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT BAHAMUT indicators and references

APTTrail: APT BAHAMUT indicators and references

Ioc 1 min lectura apt-bahamut
Fecha
18 Jun 2026
Actor
apt-bahamut
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-bahamutActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT BAHAMUT. Aliases observados: APT BAHAMUT. Conteo por tipo: domain: 175, file_path: 6, ipv4: 14, url: 1.

Key Points

  • https://about.fb.com/wp-content/uploads/2023/05/Meta-Quarterly-Adversarial-Threat-Report-Q1-2023.pdf
  • https://blog.talosintelligence.com/2018/07/Mobile-Malware-Campaign-uses-Malicious-MDM-Part2.html
  • https://mp.weixin.qq.com/s/YAAybJBAvxqrQWYDg31BBw?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN
  • https://otx.alienvault.com/pulse/5f7dd394005536c84adbaf56
  • https://otx.alienvault.com/pulse/625591f0fdef5bd852d84afe

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT BAHAMUT. Aliases observados: APT BAHAMUT. Conteo por tipo: domain: 175, file_path: 6, ipv4: 14, url: 1.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain32e6dwbbpg.deAPTTrail
Domain32player.comAPTTrail
Domain5iw68rugwfcir37uj8z3r6rfaxwd8g8cdcfcqw62.deAPTTrail
Domain96r1yh643o.deAPTTrail
Domainaccount-googie.comAPTTrail
Domainaccountvalidate.comAPTTrail
Domainairfitgym.comAPTTrail
Domainambicluster.comAPTTrail
Domainappswonder.infoAPTTrail
Domainaspnet.dyndns.infoAPTTrail
Domainaspnet.dyndns.infoassurecom.infoAPTTrail
Domainassurecom.infoAPTTrail
Domainay3a9j7pc3.deAPTTrail
Domainbulletinalerts.comAPTTrail
Domainby4mode.comAPTTrail
Domaincapsnit.comAPTTrail
Domaincdn-icloud.coAPTTrail
Domaincdn-icloud.cocelebsnightmares.comAPTTrail
Domaincdw1ir0dc9g3dwl5oh1y.deAPTTrail
Domaincelebsnightmares.comAPTTrail
Domaincitrusquad.comAPTTrail
Domainclassmunch.comAPTTrail
Domaincloud-authorize.comAPTTrail
Domaincocahut.comAPTTrail
Domaincocelebsnightmares.comAPTTrail
Domaincocoka.infoAPTTrail
Domaincocoka.infocrawloofle.comAPTTrail
Domaincohealthclubfun.comAPTTrail
Domaincrawloofle.comAPTTrail
Domaincyroonline.comAPTTrail

Referencias

Diamond Model

Adversary
apt-bahamut
Ver perfil →
Victim
APTTrail: APT BAHAMUT indicators and references
Capability
Ioc
Infrastructure
32e6dwbbpg.de
32player.com
5iw68rugwfcir37uj8z3r6rfaxwd8g8cdcfcqw62.de
96r1yh643o.de

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 32e6dwbbpg.de APTTrail VT OffSec SOCRadar
Domain 32player.com APTTrail VT OffSec SOCRadar
Domain 5iw68rugwfcir37uj8z3r6rfaxwd8g8cdcfcqw62.de APTTrail VT OffSec SOCRadar
Domain 96r1yh643o.de APTTrail VT OffSec SOCRadar
Domain account-googie.com APTTrail VT OffSec SOCRadar
Domain accountvalidate.com APTTrail VT OffSec SOCRadar
Domain airfitgym.com APTTrail VT OffSec SOCRadar
Domain ambicluster.com APTTrail VT OffSec SOCRadar
Domain appswonder.info APTTrail VT OffSec SOCRadar
Domain aspnet.dyndns.info APTTrail VT OffSec SOCRadar
Domain aspnet.dyndns.infoassurecom.info APTTrail VT OffSec SOCRadar
Domain assurecom.info APTTrail VT OffSec SOCRadar
Domain ay3a9j7pc3.de APTTrail VT OffSec SOCRadar
Domain bulletinalerts.com APTTrail VT OffSec SOCRadar
Domain by4mode.com APTTrail VT OffSec SOCRadar
Domain capsnit.com APTTrail VT OffSec SOCRadar
Domain cdn-icloud.co APTTrail VT OffSec SOCRadar
Domain cdn-icloud.cocelebsnightmares.com APTTrail VT OffSec SOCRadar
Domain cdw1ir0dc9g3dwl5oh1y.de APTTrail VT OffSec SOCRadar
Domain celebsnightmares.com APTTrail VT OffSec SOCRadar
Domain citrusquad.com APTTrail VT OffSec SOCRadar
Domain classmunch.com APTTrail VT OffSec SOCRadar
Domain cloud-authorize.com APTTrail VT OffSec SOCRadar
Domain cocahut.com APTTrail VT OffSec SOCRadar
Domain cocelebsnightmares.com APTTrail VT OffSec SOCRadar
Domain cocoka.info APTTrail VT OffSec SOCRadar
Domain cocoka.infocrawloofle.com APTTrail VT OffSec SOCRadar
Domain cohealthclubfun.com APTTrail VT OffSec SOCRadar
Domain crawloofle.com APTTrail VT OffSec SOCRadar
Domain cyroonline.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-bahamut en el blog → Ver apt-bahamut en IntelTracker → URL IntelTracker: about.fb.com→ URL IntelTracker: blog.talosintelligence.com→ URL IntelTracker: mp.weixin.qq.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: about.fb.com→ Fuente OSINT: blog.talosintelligence.com→ Fuente OSINT: mp.weixin.qq.com→ Fuente OSINT: otx.alienvault.com → Buscar apt-bahamut en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen