jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT TIBET indicators and references

APTTrail: APT TIBET indicators and references

Ioc 1 min lectura apt-tibet
Fecha
18 Jun 2026
Actor
apt-tibet
Tipo
Ioc
Pais
Unknown
Sector
Energy
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-tibetActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT TIBET. Aliases observados: APT TIBET. Conteo por tipo: domain: 48, ipv4: 3.

Key Points

  • https://citizenlab.ca/2019/09/poison-carp-tibetan-groups-targeted-with-1-click-mobile-exploits/
  • https://github.com/citizenlab/malware-indicators/blob/master/201909_MissingLink/iocs.csv
  • https://otx.alienvault.com/pulse/5d89e04cea5c55ee87a6aa05
  • https://otx.alienvault.com/pulse/5d9c9101d569bf434dbc9385
  • https://otx.alienvault.com/pulse/5e83635bf1c0d9b195569252

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT TIBET. Aliases observados: APT TIBET. Conteo por tipo: domain: 48, ipv4: 3.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain1.test.3322.org.cnAPTTrail
Domain123ewqasdcxz.xicp.netAPTTrail
Domain2.test.3322.org.cnAPTTrail
Domain3.test.3322.org.cnAPTTrail
Domain4.test.3322.org.cnAPTTrail
Domainairjaldinet.mlAPTTrail
Domainantmoving.onlineAPTTrail
Domainbeemail.onlineAPTTrail
Domainbf.mkAPTTrail
Domainbrowserservice.zzux.comAPTTrail
Domainclient-user-id.comAPTTrail
Domaincta-tibet.comAPTTrail
Domainctmail.dns-dns.comAPTTrail
Domaindalailama.onlineAPTTrail
Domaindesigner.dynamic-dns.netAPTTrail
Domainenergy-mail.orgAPTTrail
Domaingetadobeflashdownloader.proxydns.comAPTTrail
Domaingmail.isooncloud.comAPTTrail
Domaingmailapp.meAPTTrail
Domainhoop-america.oicp.netAPTTrail
Domainhotmal1.comAPTTrail
Domainhy.micrsofts.comAPTTrail
Domainin-tibet.netAPTTrail
Domaininstall.ddns.infoAPTTrail
Domainip.micrsofts.comAPTTrail
Domainizelense.comAPTTrail
Domainloginwebmailnic.dynssl.comAPTTrail
Domainly.micorsofts.netAPTTrail
Domainmail-tibet.netAPTTrail
Domainmailanalysis.servicesAPTTrail

Referencias

Diamond Model

Adversary
apt-tibet
Ver perfil →
Victim
APTTrail: APT TIBET indicators and references
Capability
Ioc
Infrastructure
1.test.3322.org.cn
123ewqasdcxz.xicp.net
2.test.3322.org.cn
3.test.3322.org.cn

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 1.test.3322.org.cn APTTrail VT OffSec SOCRadar
Domain 123ewqasdcxz.xicp.net APTTrail VT OffSec SOCRadar
Domain 2.test.3322.org.cn APTTrail VT OffSec SOCRadar
Domain 3.test.3322.org.cn APTTrail VT OffSec SOCRadar
Domain 4.test.3322.org.cn APTTrail VT OffSec SOCRadar
Domain airjaldinet.ml APTTrail VT OffSec SOCRadar
Domain antmoving.online APTTrail VT OffSec SOCRadar
Domain beemail.online APTTrail VT OffSec SOCRadar
Domain bf.mk APTTrail VT OffSec SOCRadar
Domain browserservice.zzux.com APTTrail VT OffSec SOCRadar
Domain client-user-id.com APTTrail VT OffSec SOCRadar
Domain cta-tibet.com APTTrail VT OffSec SOCRadar
Domain ctmail.dns-dns.com APTTrail VT OffSec SOCRadar
Domain dalailama.online APTTrail VT OffSec SOCRadar
Domain designer.dynamic-dns.net APTTrail VT OffSec SOCRadar
Domain energy-mail.org APTTrail VT OffSec SOCRadar
Domain getadobeflashdownloader.proxydns.com APTTrail VT OffSec SOCRadar
Domain gmail.isooncloud.com APTTrail VT OffSec SOCRadar
Domain gmailapp.me APTTrail VT OffSec SOCRadar
Domain hoop-america.oicp.net APTTrail VT OffSec SOCRadar
Domain hotmal1.com APTTrail VT OffSec SOCRadar
Domain hy.micrsofts.com APTTrail VT OffSec SOCRadar
Domain in-tibet.net APTTrail VT OffSec SOCRadar
Domain install.ddns.info APTTrail VT OffSec SOCRadar
Domain ip.micrsofts.com APTTrail VT OffSec SOCRadar
Domain izelense.com APTTrail VT OffSec SOCRadar
Domain loginwebmailnic.dynssl.com APTTrail VT OffSec SOCRadar
Domain ly.micorsofts.net APTTrail VT OffSec SOCRadar
Domain mail-tibet.net APTTrail VT OffSec SOCRadar
Domain mailanalysis.services APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-tibet en el blog → Ver apt-tibet en IntelTracker → URL IntelTracker: citizenlab.ca→ URL IntelTracker: github.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: citizenlab.ca→ Fuente OSINT: github.com→ Fuente OSINT: otx.alienvault.com→ Fuente OSINT: otx.alienvault.com → Buscar apt-tibet en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters