jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: foudre indicators and references

APTTrail: foudre indicators and references

Ioc 2 min lectura foudre
Fecha
18 Jun 2026
Actor
foudre
Tipo
Ioc
Pais
Iran
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
foudreActor
IranPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a foudre. Aliases observados: foudre, infy. Conteo por tipo: domain: 263.

Key Points

  • https://malpedia.caad.fkie.fraunhofer.de/details/win.infy
  • https://twitter.com/ShadowChasing1/status/1339190981703266304
  • https://unit42.paloaltonetworks.com/prince-of-persia-infy-malware-active-in-decade-of-targeted-attacks/
  • https://unit42.paloaltonetworks.com/unit42-prince-of-persia-game-over/
  • https://unit42.paloaltonetworks.com/unit42-prince-persia-ride-lightning-infy-returns-foudre/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a foudre. Aliases observados: foudre, infy. Conteo por tipo: domain: 263.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain017eab31.spaceAPTTrail
Domain01ead12b.spaceAPTTrail
Domain0ca0453a.siteAPTTrail
Domain149a673e.dynu.netAPTTrail
Domain149a673e.netAPTTrail
Domain149a673e.spaceAPTTrail
Domain149a673e.topAPTTrail
Domain14c7e2dc.spaceAPTTrail
Domain15bb747b.siteAPTTrail
Domain15ce27c5.siteAPTTrail
Domain16e53040.spaceAPTTrail
Domain177a5c4a.spaceAPTTrail
Domain17ecf559.siteAPTTrail
Domain1cb3c4c0.spaceAPTTrail
Domain1d4ee030.spaceAPTTrail
Domain1d8bfc20.spaceAPTTrail
Domain1f0e7a56.spaceAPTTrail
Domain23dafa1e.spaceAPTTrail
Domain2daa46f1.spaceAPTTrail
Domain32c39cf4.dynu.netAPTTrail
Domain32c39cf4.netAPTTrail
Domain32c39cf4.spaceAPTTrail
Domain32c39cf4.topAPTTrail
Domain334edefd.dynu.netAPTTrail
Domain334edefd.netAPTTrail
Domain334edefd.spaceAPTTrail
Domain334edefd.topAPTTrail
Domain341a436d.spaceAPTTrail
Domain34231ae4.dynu.netAPTTrail
Domain34231ae4.netAPTTrail

Referencias

Diamond Model

Adversary
foudre
Ver perfil →
Victim
APTTrail: foudre indicators and references
Iran
Capability
Ioc
Infrastructure
017eab31.space
01ead12b.space
0ca0453a.site
149a673e.dynu.net

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 017eab31.space APTTrail VT OffSec SOCRadar
Domain 01ead12b.space APTTrail VT OffSec SOCRadar
Domain 0ca0453a.site APTTrail VT OffSec SOCRadar
Domain 149a673e.dynu.net APTTrail VT OffSec SOCRadar
Domain 149a673e.net APTTrail VT OffSec SOCRadar
Domain 149a673e.space APTTrail VT OffSec SOCRadar
Domain 149a673e.top APTTrail VT OffSec SOCRadar
Domain 14c7e2dc.space APTTrail VT OffSec SOCRadar
Domain 15bb747b.site APTTrail VT OffSec SOCRadar
Domain 15ce27c5.site APTTrail VT OffSec SOCRadar
Domain 16e53040.space APTTrail VT OffSec SOCRadar
Domain 177a5c4a.space APTTrail VT OffSec SOCRadar
Domain 17ecf559.site APTTrail VT OffSec SOCRadar
Domain 1cb3c4c0.space APTTrail VT OffSec SOCRadar
Domain 1d4ee030.space APTTrail VT OffSec SOCRadar
Domain 1d8bfc20.space APTTrail VT OffSec SOCRadar
Domain 1f0e7a56.space APTTrail VT OffSec SOCRadar
Domain 23dafa1e.space APTTrail VT OffSec SOCRadar
Domain 2daa46f1.space APTTrail VT OffSec SOCRadar
Domain 32c39cf4.dynu.net APTTrail VT OffSec SOCRadar
Domain 32c39cf4.net APTTrail VT OffSec SOCRadar
Domain 32c39cf4.space APTTrail VT OffSec SOCRadar
Domain 32c39cf4.top APTTrail VT OffSec SOCRadar
Domain 334edefd.dynu.net APTTrail VT OffSec SOCRadar
Domain 334edefd.net APTTrail VT OffSec SOCRadar
Domain 334edefd.space APTTrail VT OffSec SOCRadar
Domain 334edefd.top APTTrail VT OffSec SOCRadar
Domain 341a436d.space APTTrail VT OffSec SOCRadar
Domain 34231ae4.dynu.net APTTrail VT OffSec SOCRadar
Domain 34231ae4.net APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor foudre en el blog → Ver foudre en IntelTracker → URL IntelTracker: malpedia.caad.fkie.fraunhofer.de→ URL IntelTracker: twitter.com→ URL IntelTracker: unit42.paloaltonetworks.com→ URL IntelTracker: unit42.paloaltonetworks.com→ URL IntelTracker: unit42.paloaltonetworks.com→ URL IntelTracker: www.intezer.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: malpedia.caad.fkie.fraunhofer.de→ Fuente OSINT: twitter.com→ Fuente OSINT: unit42.paloaltonetworks.com→ Fuente OSINT: unit42.paloaltonetworks.com → Buscar foudre en APTTrail → Repositorio APTTrail → Mas incidentes en Iran → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters