jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: crouching yeti indicators and references

APTTrail: crouching yeti indicators and references

Ioc 1 min lectura crouching-yeti
Fecha
18 Jun 2026
Actor
crouching-yeti
Tipo
Ioc
Pais
Russia
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

12IOCs
0TTPs
crouching-yetiActor
RussiaPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a crouching yeti. Aliases observados: crouching yeti, dragonfly, iron liberty, tg-4192. Conteo por tipo: domain: 5, url: 2.

Key Points

  • https://lab52.io/blog/the-geopolitical-and-potential-cyber-influence-of-russia-in-africa/
  • https://securelist.com/energetic-bear-crouching-yeti/85345/
  • https://www.virustotal.com/gui/ip-address/155.207.63.4/relations
  • https://www.virustotal.com/gui/ip-address/51.159.28.101/relations

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a crouching yeti. Aliases observados: crouching yeti, dragonfly, iron liberty, tg-4192. Conteo por tipo: domain: 5, url: 2.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainecco0.b13x.orgAPTTrail
Domainkanri.rbridal.netAPTTrail
Domainlite.ultralitedesigns.comAPTTrail
Domainsatanal.infoAPTTrail
Domaintureg.infoAPTTrail
URLhttp://155.207.63.4APTTrail
URLhttp://51.159.28.101APTTrail

Referencias

Diamond Model

Adversary
crouching-yeti
Ver perfil →
Victim
APTTrail: crouching yeti indicators and references
Russia
Capability
Ioc
Infrastructure
ecco0.b13x.org
kanri.rbridal.net
lite.ultralitedesigns.com
satanal.info

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

14 enlaces
Domain
www.virustotal.com
IOC compartido
Domain
securelist.com
IOC compartido
Domain
lab52.io
IOC compartido
IntelTracker / OSINT link
lab52.io
crouching-yeti
enlace asociado al actor
IntelTracker / OSINT link
securelist.com
crouching-yeti
enlace asociado al actor
IntelTracker / OSINT link
www.virustotal.com
crouching-yeti
enlace asociado al actor
IntelTracker / OSINT link
www.virustotal.com
crouching-yeti
enlace asociado al actor
IntelTracker / OSINT link
github.com
crouching-yeti
enlace asociado al actor
IntelTracker / OSINT link
raw.githubusercontent.com
crouching-yeti
enlace asociado al actor
Nodo actual
APTTrail: crouching yeti indicators and references
crouching-yeti · Russia
Victima
APTTrail: APT CLOUDWIZARD indicators and references
securelist.com www.virustotal.com
IOC compartido
Victima
APTTrail: dinodas indicators and references
securelist.com www.virustotal.com
IOC compartido
Victima
APTTrail: APT LAZYSCRIPTER indicators and references
lab52.io www.virustotal.com
IOC compartido
Victima
APTTrail: apt-c-39 indicators and references
securelist.com www.virustotal.com
IOC compartido
Victima
APTTrail: apt-c-12 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 18 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 30 indicators and references
www.virustotal.com
IOC compartido
Victima
APTTrail: APT 45 indicators and references
www.virustotal.com
IOC compartido

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain ecco0.b13x.org APTTrail VT OffSec SOCRadar
Domain kanri.rbridal.net APTTrail VT OffSec SOCRadar
Domain lite.ultralitedesigns.com APTTrail VT OffSec SOCRadar
Domain satanal.info APTTrail VT OffSec SOCRadar
Domain tureg.info APTTrail VT OffSec SOCRadar
URL http://155.207.63.4 APTTrail VT OffSec SOCRadar
URL http://51.159.28.101 APTTrail VT OffSec SOCRadar
IP 155.207.63.4 Extraido del contenido VT OffSec SOCRadar
IP 51.159.28.101 Extraido del contenido VT OffSec SOCRadar
Domain lab52.io Extraido del contenido VT OffSec SOCRadar
Domain securelist.com Extraido del contenido VT OffSec SOCRadar
Domain www.virustotal.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor crouching-yeti en el blog → Ver crouching-yeti en IntelTracker → URL IntelTracker: lab52.io→ URL IntelTracker: securelist.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: lab52.io→ Fuente OSINT: securelist.com→ Fuente OSINT: www.virustotal.com→ Fuente OSINT: www.virustotal.com → Buscar crouching-yeti en APTTrail → Repositorio APTTrail → Mas incidentes en Russia → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters