jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT REDFOXTROT indicators and references

APTTrail: APT REDFOXTROT indicators and references

Ioc 2 min lectura apt-redfoxtrot
Fecha
18 Jun 2026
Actor
apt-redfoxtrot
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-redfoxtrotActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT REDFOXTROT. Aliases observados: APT REDFOXTROT. Conteo por tipo: domain: 144, ipv4: 4.

Key Points

  • https://github.com/Insikt-Group/Research/blob/master/RedFoxtrot%20June%202021
  • https://go.recordedfuture.com/hubfs/reports/cta-2021-0616.pdf
  • https://otx.alienvault.com/pulse/60cc709013f5498fe7e60120
  • https://otx.alienvault.com/pulse/61544024e496818edcda5f98
  • https://twitter.com/Cyberteam008/status/1781204417481679199

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT REDFOXTROT. Aliases observados: APT REDFOXTROT. Conteo por tipo: domain: 144, ipv4: 4.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainadobesupport.netAPTTrail
Domainadtl.mywire.orgAPTTrail
Domainanywheres.run.placeAPTTrail
Domainappinfo.camdvr.orgAPTTrail
Domainappsupport.my-router.deAPTTrail
Domainappupdate.firewall-gateway.deAPTTrail
Domainappupdate.my-router.deAPTTrail
Domainaries.epac.toAPTTrail
Domainbbsaili.camdvr.orgAPTTrail
Domainbilling.epac.toAPTTrail
Domaincapture.kozow.comAPTTrail
Domaincheapnews.onlineAPTTrail
Domainchock.mywire.orgAPTTrail
Domainciscoteam.ignorelist.comAPTTrail
Domaincoreldraw.kozow.comAPTTrail
Domainczconnections.ddns.infoAPTTrail
Domaindarkpapa.chickenkiller.comAPTTrail
Domaindhsg123.jkub.comAPTTrail
Domaindrdo.dumb1.comAPTTrail
Domaindrdo.mypop3.netAPTTrail
Domaindsgf.chickenkiller.comAPTTrail
Domainelienceso.kozow.comAPTTrail
Domainexat.dnset.comAPTTrail
Domainexat.zyns.comAPTTrail
Domainexecserver.giize.comAPTTrail
Domainexujjat.xxuz.comAPTTrail
Domainfashget.theworkpc.comAPTTrail
Domainfivenum.mooo.comAPTTrail
Domainforeverlove.zzux.comAPTTrail
Domainforum.camdvr.orgAPTTrail

Referencias

Diamond Model

Adversary
apt-redfoxtrot
Ver perfil →
Victim
APTTrail: APT REDFOXTROT indicators and references
Capability
Ioc
Infrastructure
adobesupport.net
adtl.mywire.org
anywheres.run.place
appinfo.camdvr.org

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain adobesupport.net APTTrail VT OffSec SOCRadar
Domain adtl.mywire.org APTTrail VT OffSec SOCRadar
Domain anywheres.run.place APTTrail VT OffSec SOCRadar
Domain appinfo.camdvr.org APTTrail VT OffSec SOCRadar
Domain appsupport.my-router.de APTTrail VT OffSec SOCRadar
Domain appupdate.firewall-gateway.de APTTrail VT OffSec SOCRadar
Domain appupdate.my-router.de APTTrail VT OffSec SOCRadar
Domain aries.epac.to APTTrail VT OffSec SOCRadar
Domain bbsaili.camdvr.org APTTrail VT OffSec SOCRadar
Domain billing.epac.to APTTrail VT OffSec SOCRadar
Domain capture.kozow.com APTTrail VT OffSec SOCRadar
Domain cheapnews.online APTTrail VT OffSec SOCRadar
Domain chock.mywire.org APTTrail VT OffSec SOCRadar
Domain ciscoteam.ignorelist.com APTTrail VT OffSec SOCRadar
Domain coreldraw.kozow.com APTTrail VT OffSec SOCRadar
Domain czconnections.ddns.info APTTrail VT OffSec SOCRadar
Domain darkpapa.chickenkiller.com APTTrail VT OffSec SOCRadar
Domain dhsg123.jkub.com APTTrail VT OffSec SOCRadar
Domain drdo.dumb1.com APTTrail VT OffSec SOCRadar
Domain drdo.mypop3.net APTTrail VT OffSec SOCRadar
Domain dsgf.chickenkiller.com APTTrail VT OffSec SOCRadar
Domain elienceso.kozow.com APTTrail VT OffSec SOCRadar
Domain exat.dnset.com APTTrail VT OffSec SOCRadar
Domain exat.zyns.com APTTrail VT OffSec SOCRadar
Domain execserver.giize.com APTTrail VT OffSec SOCRadar
Domain exujjat.xxuz.com APTTrail VT OffSec SOCRadar
Domain fashget.theworkpc.com APTTrail VT OffSec SOCRadar
Domain fivenum.mooo.com APTTrail VT OffSec SOCRadar
Domain foreverlove.zzux.com APTTrail VT OffSec SOCRadar
Domain forum.camdvr.org APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-redfoxtrot en el blog → Ver apt-redfoxtrot en IntelTracker → URL IntelTracker: github.com→ URL IntelTracker: go.recordedfuture.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: twitter.com→ URL IntelTracker: www.recordedfuture.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: github.com→ Fuente OSINT: go.recordedfuture.com→ Fuente OSINT: otx.alienvault.com→ Fuente OSINT: otx.alienvault.com → Buscar apt-redfoxtrot en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters