jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT SHAMOON indicators and references

APTTrail: APT SHAMOON indicators and references

Ioc 1 min lectura apt-shamoon
Fecha
18 Jun 2026
Actor
apt-shamoon
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

13IOCs
0TTPs
apt-shamoonActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT SHAMOON. Aliases observados: APT SHAMOON. Conteo por tipo: domain: 10.

Key Points

  • https://github.com/advanced-threat-research/IOCs/blob/master/2017/2017-01-27-spotlight-on-shamoon/spotlight-on-shamoon.csv
  • https://github.com/advanced-threat-research/IOCs/blob/master/2018/2018-12-14-shamoon-returns-to-wipe-systems-in-middle-east-europe/shamoon-returns-to-wipe-systems-in-middle-east-europe.csv
  • https://github.com/advanced-threat-research/IOCs/blob/master/2018/2018-12-19-shamoon-attackers-employ-new-tool-kit-to-wipe-infected-systems/shamoon-attackers-employ-new-tool-kit-to-wipe-infected-systems.csv
  • https://securityintelligence.com/the-full-shamoon-how-the-devastating-malware-was-inserted-into-networks/
  • https://www.arbornetworks.com/blog/asert/additional-insights-on-shamoon2/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT SHAMOON. Aliases observados: APT SHAMOON. Conteo por tipo: domain: 10.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainanalytics-google.orgAPTTrail
Domaingo-microstf.comAPTTrail
Domainkey8854321.pubAPTTrail
Domainmaps-modon.clubAPTTrail
Domainmol.com-ho.meAPTTrail
Domainmynetwork.ddns.netAPTTrail
Domainntg-sa.comAPTTrail
Domainpossibletarget.ddns.comAPTTrail
Domainwinappupdater.comAPTTrail
Domainwinupdater.comAPTTrail

Referencias

Diamond Model

Adversary
apt-shamoon
Ver perfil →
Victim
APTTrail: APT SHAMOON indicators and references
Capability
Ioc
Infrastructure
analytics-google.org
go-microstf.com
key8854321.pub
maps-modon.club

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain analytics-google.org APTTrail VT OffSec SOCRadar
Domain go-microstf.com APTTrail VT OffSec SOCRadar
Domain key8854321.pub APTTrail VT OffSec SOCRadar
Domain maps-modon.club APTTrail VT OffSec SOCRadar
Domain mol.com-ho.me APTTrail VT OffSec SOCRadar
Domain mynetwork.ddns.net APTTrail VT OffSec SOCRadar
Domain ntg-sa.com APTTrail VT OffSec SOCRadar
Domain possibletarget.ddns.com APTTrail VT OffSec SOCRadar
Domain winappupdater.com APTTrail VT OffSec SOCRadar
Domain winupdater.com APTTrail VT OffSec SOCRadar
Domain github.com Extraido del contenido VT OffSec SOCRadar
Domain securityintelligence.com Extraido del contenido VT OffSec SOCRadar
Domain www.arbornetworks.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-shamoon en el blog → Ver apt-shamoon en IntelTracker → URL IntelTracker: github.com→ URL IntelTracker: github.com→ URL IntelTracker: github.com→ URL IntelTracker: securityintelligence.com→ URL IntelTracker: www.arbornetworks.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: github.com→ Fuente OSINT: github.com→ Fuente OSINT: github.com→ Fuente OSINT: securityintelligence.com → Buscar apt-shamoon en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters