jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT CARDERBEE indicators and references

APTTrail: APT CARDERBEE indicators and references

Ioc 1 min lectura apt-carderbee
Fecha
18 Jun 2026
Actor
apt-carderbee
Tipo
Ioc
Pais
Unknown
Sector
Software
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

12IOCs
0TTPs
apt-carderbeeActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT CARDERBEE. Aliases observados: APT CARDERBEE. Conteo por tipo: domain: 9, ipv4: 2.

Key Points

  • https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/carderbee-software-supply-chain-certificate-abuse

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT CARDERBEE. Aliases observados: APT CARDERBEE. Conteo por tipo: domain: 9, ipv4: 2.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainactive-microsoft.comAPTTrail
Domaincdn.ofo.acAPTTrail
Domaincdn.stream-amazon.comAPTTrail
Domaingithubassets.akamaixed.netAPTTrail
Domaingobay.infoAPTTrail
Domainms-f7-sites-prod-cdn.akamaixed.netAPTTrail
Domainms-g9-sites-prod-cdn.akamaixed.netAPTTrail
Domainofo.acAPTTrail
Domaintjj.active-microsoft.comAPTTrail
IP103.151.28.11:8090APTTrail
IP111.231.100.228:8888APTTrail

Referencias

Diamond Model

Adversary
apt-carderbee
Ver perfil →
Victim
APTTrail: APT CARDERBEE indicators and references
Capability
Ioc
Infrastructure
active-microsoft.com
cdn.ofo.ac
cdn.stream-amazon.com
githubassets.akamaixed.net

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain active-microsoft.com APTTrail VT OffSec SOCRadar
Domain cdn.ofo.ac APTTrail VT OffSec SOCRadar
Domain cdn.stream-amazon.com APTTrail VT OffSec SOCRadar
Domain githubassets.akamaixed.net APTTrail VT OffSec SOCRadar
Domain gobay.info APTTrail VT OffSec SOCRadar
Domain ms-f7-sites-prod-cdn.akamaixed.net APTTrail VT OffSec SOCRadar
Domain ms-g9-sites-prod-cdn.akamaixed.net APTTrail VT OffSec SOCRadar
Domain ofo.ac APTTrail VT OffSec SOCRadar
Domain tjj.active-microsoft.com APTTrail VT OffSec SOCRadar
IP 103.151.28.11:8090 APTTrail VT OffSec SOCRadar
IP 111.231.100.228:8888 APTTrail VT OffSec SOCRadar
Domain symantec-enterprise-blogs.security.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-carderbee en el blog → Ver apt-carderbee en IntelTracker → URL IntelTracker: symantec-enterprise-blogs.security.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: symantec-enterprise-blogs.security.com → Buscar apt-carderbee en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters