jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: brave prince indicators and references

APTTrail: brave prince indicators and references

Ioc 1 min lectura brave-prince
Fecha
18 Jun 2026
Actor
brave-prince
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

17IOCs
0TTPs
brave-princeActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a brave prince. Aliases observados: brave prince, ghost419, gold dragon. Conteo por tipo: domain: 13, ipv4: 2.

Key Points

  • https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/gold-dragon-widens-olympics-malware-attacks-gains-permanent-presence-on-victims-systems/
  • https://www.virustotal.com/gui/file/04102f13e59243cd2a96c435e9cc3c6dc3b52c988865926434a3b8cb643e5e63/detection
  • https://www.virustotal.com/gui/file/6153da017a50ba3f781c78b6a3a2be3552b9371574da657d97d0063a40b17bbf/detection
  • https://x.com/malwrhunterteam/status/1851566881825538348
  • https://x.com/malwrhunterteam/status/1851567599701705051

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a brave prince. Aliases observados: brave prince, ghost419, gold dragon. Conteo por tipo: domain: 13, ipv4: 2.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain0523qyfw.cnAPTTrail
Domain0523qyfw.comAPTTrail
Domaineodo1.000webhostapp.comAPTTrail
Domainfollowgho.byethost7.comAPTTrail
Domainink.inkboom.co.krAPTTrail
Domainnid-help-pchange.atwebpages.comAPTTrail
Domainnyazz.comAPTTrail
Domainone.0523qyfw.comAPTTrail
Domainredi.nyazz.comAPTTrail
Domainscrt1.nyazz.comAPTTrail
Domainssh.0523qyfw.cnAPTTrail
Domainssh.0523qyfw.comAPTTrail
Domaintrydai.000webhostapp.comAPTTrail
IP107.148.61.127:8084APTTrail
IP154.19.200.133:8087APTTrail

Referencias

Diamond Model

Adversary
brave-prince
Ver perfil →
Victim
APTTrail: brave prince indicators and references
Capability
Ioc
Infrastructure
0523qyfw.cn
0523qyfw.com
eodo1.000webhostapp.com
followgho.byethost7.com

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

15 enlaces
Domain
www.virustotal.com
IOC compartido
Domain
securingtomorrow.mcafee.com
IOC compartido
IntelTracker / OSINT link
securingtomorrow.mcafee.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
www.virustotal.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
www.virustotal.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
x.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
x.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
github.com
brave-prince
enlace asociado al actor
IntelTracker / OSINT link
raw.githubusercontent.com
brave-prince
enlace asociado al actor
Nodo actual
APTTrail: brave prince indicators and references
brave-prince
Victima
APTTrail: apt-c-12 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 18 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 30 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 45 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: apt-c-60 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: eraleig ransomware indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT ATLASCROSS indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: aa22-264a indicators and references
www.virustotal.com
IOC compartido

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 0523qyfw.cn APTTrail VT OffSec SOCRadar
Domain 0523qyfw.com APTTrail VT OffSec SOCRadar
Domain eodo1.000webhostapp.com APTTrail VT OffSec SOCRadar
Domain followgho.byethost7.com APTTrail VT OffSec SOCRadar
Domain ink.inkboom.co.kr APTTrail VT OffSec SOCRadar
Domain nid-help-pchange.atwebpages.com APTTrail VT OffSec SOCRadar
Domain nyazz.com APTTrail VT OffSec SOCRadar
Domain one.0523qyfw.com APTTrail VT OffSec SOCRadar
Domain redi.nyazz.com APTTrail VT OffSec SOCRadar
Domain scrt1.nyazz.com APTTrail VT OffSec SOCRadar
Domain ssh.0523qyfw.cn APTTrail VT OffSec SOCRadar
Domain ssh.0523qyfw.com APTTrail VT OffSec SOCRadar
Domain trydai.000webhostapp.com APTTrail VT OffSec SOCRadar
IP 107.148.61.127:8084 APTTrail VT OffSec SOCRadar
IP 154.19.200.133:8087 APTTrail VT OffSec SOCRadar
Domain securingtomorrow.mcafee.com Extraido del contenido VT OffSec SOCRadar
Domain www.virustotal.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor brave-prince en el blog → Ver brave-prince en IntelTracker → URL IntelTracker: securingtomorrow.mcafee.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: x.com→ URL IntelTracker: x.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: securingtomorrow.mcafee.com→ Fuente OSINT: www.virustotal.com→ Fuente OSINT: www.virustotal.com→ Fuente OSINT: x.com → Buscar brave-prince en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters