jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT TA2101 indicators and references

APTTrail: APT TA2101 indicators and references

Ioc 1 min lectura apt-ta2101
Fecha
18 Jun 2026
Actor
apt-ta2101
Tipo
Ioc
Pais
Unknown
Sector
Government
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

12IOCs
0TTPs
apt-ta2101Actor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT TA2101. Aliases observados: APT TA2101. Conteo por tipo: domain: 2, url: 9.

Key Points

  • https://www.proofpoint.com/us/threat-insight/post/ta2101-plays-government-imposter-distribute-malware-german-italian-and-us

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT TA2101. Aliases observados: APT TA2101. Conteo por tipo: domain: 2, url: 9.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainconbase.topAPTTrail
Domainuspsdelivery-service.comAPTTrail
URLhttp://104.168.174.32APTTrail
URLhttp://104.168.198.208APTTrail
URLhttp://104.168.198.230APTTrail
URLhttp://104.168.215.54APTTrail
URLhttp://108.174.199.10APTTrail
URLhttp://192.119.68.225APTTrail
URLhttp://198.50.168.67APTTrail
URLhttp://54.39.233.131APTTrail
URLhttp://54.39.233.175APTTrail

Referencias

Diamond Model

Adversary
apt-ta2101
Ver perfil →
Victim
APTTrail: APT TA2101 indicators and references
Capability
Ioc
Infrastructure
conbase.top
uspsdelivery-service.com
http://104.168.174.32
http://104.168.198.208

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain conbase.top APTTrail VT OffSec SOCRadar
Domain uspsdelivery-service.com APTTrail VT OffSec SOCRadar
URL http://104.168.174.32 APTTrail VT OffSec SOCRadar
URL http://104.168.198.208 APTTrail VT OffSec SOCRadar
URL http://104.168.198.230 APTTrail VT OffSec SOCRadar
URL http://104.168.215.54 APTTrail VT OffSec SOCRadar
URL http://108.174.199.10 APTTrail VT OffSec SOCRadar
URL http://192.119.68.225 APTTrail VT OffSec SOCRadar
URL http://198.50.168.67 APTTrail VT OffSec SOCRadar
URL http://54.39.233.131 APTTrail VT OffSec SOCRadar
URL http://54.39.233.175 APTTrail VT OffSec SOCRadar
Domain www.proofpoint.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-ta2101 en el blog → Ver apt-ta2101 en IntelTracker → URL IntelTracker: www.proofpoint.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.proofpoint.com → Buscar apt-ta2101 en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters