jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT Q12 indicators and references

APTTrail: APT Q12 indicators and references

Ioc 2 min lectura apt-q12
Fecha
18 Jun 2026
Actor
apt-q12
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-q12Actor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT Q12. Aliases observados: APT Q12. Conteo por tipo: domain: 10, file_path: 17, ipv4: 8, url: 13.

Key Points

  • https://blogs.jpcert.or.jp/ja/2025/10/APT-C-60_update.html
  • https://twitter.com/malwrhunterteam/status/1541784815728459779
  • https://twitter.com/unpacker/status/1541944761140948993
  • https://twitter.com/unpacker/status/1541944861275828224
  • https://twitter.com/unpacker/status/1541945280467111936

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT Q12. Aliases observados: APT Q12. Conteo por tipo: domain: 10, file_path: 17, ipv4: 8, url: 13.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainaufreighttransport.comAPTTrail
Domaincontrolmytraffic.comAPTTrail
Domaincoredashcloud.comAPTTrail
Domainguesttrafficinformation.comAPTTrail
Domainhoaquincloud.comAPTTrail
Domainmsvsseccloud.comAPTTrail
Domainnyculturecloud.comAPTTrail
Domainorg-nk.comAPTTrail
Domaintomatozcloud.comAPTTrail
Domaintrafficcheckdaily.comAPTTrail
FILE_PATH/JxQpe5T2nCn747UP.bmpAPTTrail
FILE_PATH/VYtpPTc8UE2zG4dH.bmpAPTTrail
FILE_PATH/WHZAZVRYVJTN.bmpAPTTrail
FILE_PATH/d7w5y/n3tb4.aspAPTTrail
FILE_PATH/files/kqAjJY3v4JxtChh3.bmpAPTTrail
FILE_PATH/kqAjJY3v4JxtChh3.bmpAPTTrail
FILE_PATH/manager/JxQpe5T2nCn747UP.bmpAPTTrail
FILE_PATH/manager/VYtpPTc8UE2zG4dH.bmpAPTTrail
FILE_PATH/verify/V4/WHZAZVRYVJTN.bmpAPTTrail
FILE_PATH/wkdo9/2qpmk.aspAPTTrail
FILE_PATH/wkdo9/4b3ru.aspAPTTrail
FILE_PATH/wkdo9/n3tb4.aspAPTTrail
FILE_PATH/wkdo9/t1802.aspAPTTrail
FILE_PATH/z2jb95/a3pvvu.aspAPTTrail
FILE_PATH/z2jb95/fz0n15.aspAPTTrail
FILE_PATH/z2jb95/hsvxr8.aspAPTTrail
FILE_PATH/z2jb95/yejo9i.aspAPTTrail
IP185.181.229.110:443APTTrail
IP185.181.230.110:443APTTrail
IP185.181.230.71:443APTTrail

Referencias

Diamond Model

Adversary
apt-q12
Ver perfil →
Victim
APTTrail: APT Q12 indicators and references
Capability
Ioc
Filtracion: 3 TB
Infrastructure
aufreighttransport.com
controlmytraffic.com
coredashcloud.com
guesttrafficinformation.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain aufreighttransport.com APTTrail VT OffSec SOCRadar
Domain controlmytraffic.com APTTrail VT OffSec SOCRadar
Domain coredashcloud.com APTTrail VT OffSec SOCRadar
Domain guesttrafficinformation.com APTTrail VT OffSec SOCRadar
Domain hoaquincloud.com APTTrail VT OffSec SOCRadar
Domain msvsseccloud.com APTTrail VT OffSec SOCRadar
Domain nyculturecloud.com APTTrail VT OffSec SOCRadar
Domain org-nk.com APTTrail VT OffSec SOCRadar
Domain tomatozcloud.com APTTrail VT OffSec SOCRadar
Domain trafficcheckdaily.com APTTrail VT OffSec SOCRadar
FILE_PATH /JxQpe5T2nCn747UP.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /VYtpPTc8UE2zG4dH.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /WHZAZVRYVJTN.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /d7w5y/n3tb4.asp APTTrail VT OffSec SOCRadar
FILE_PATH /files/kqAjJY3v4JxtChh3.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /kqAjJY3v4JxtChh3.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /manager/JxQpe5T2nCn747UP.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /manager/VYtpPTc8UE2zG4dH.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /verify/V4/WHZAZVRYVJTN.bmp APTTrail VT OffSec SOCRadar
FILE_PATH /wkdo9/2qpmk.asp APTTrail VT OffSec SOCRadar
FILE_PATH /wkdo9/4b3ru.asp APTTrail VT OffSec SOCRadar
FILE_PATH /wkdo9/n3tb4.asp APTTrail VT OffSec SOCRadar
FILE_PATH /wkdo9/t1802.asp APTTrail VT OffSec SOCRadar
FILE_PATH /z2jb95/a3pvvu.asp APTTrail VT OffSec SOCRadar
FILE_PATH /z2jb95/fz0n15.asp APTTrail VT OffSec SOCRadar
FILE_PATH /z2jb95/hsvxr8.asp APTTrail VT OffSec SOCRadar
FILE_PATH /z2jb95/yejo9i.asp APTTrail VT OffSec SOCRadar
IP 185.181.229.110:443 APTTrail VT OffSec SOCRadar
IP 185.181.230.110:443 APTTrail VT OffSec SOCRadar
IP 185.181.230.71:443 APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-q12 en el blog → Ver apt-q12 en IntelTracker → URL IntelTracker: blogs.jpcert.or.jp→ URL IntelTracker: twitter.com→ URL IntelTracker: twitter.com→ URL IntelTracker: twitter.com→ URL IntelTracker: twitter.com→ URL IntelTracker: www.secrss.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: blogs.jpcert.or.jp→ Fuente OSINT: twitter.com→ Fuente OSINT: twitter.com→ Fuente OSINT: twitter.com → Buscar apt-q12 en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters