jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: magalenha indicators and references

APTTrail: magalenha indicators and references

Ioc 1 min lectura magalenha
Fecha
18 Jun 2026
Actor
magalenha
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

21IOCs
0TTPs
magalenhaActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a magalenha. Aliases observados: magalenha. Conteo por tipo: ipv4: 1, url: 19.

Key Points

  • https://www.sentinelone.com/labs/operation-magalenha-long-running-campaign-pursues-portuguese-credentials-and-pii/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a magalenha. Aliases observados: magalenha. Conteo por tipo: ipv4: 1, url: 19.

Indicadores de Compromiso (IOCs)

TipoValorContexto
IP81.200.152.38:9000APTTrail
URLhttp://128.199.228.142APTTrail
URLhttp://128.199.68.249APTTrail
URLhttp://157.245.44.246APTTrail
URLhttp://176.57.221.92APTTrail
URLhttp://178.128.174.182APTTrail
URLhttp://193.218.204.207APTTrail
URLhttp://2.59.41.206APTTrail
URLhttp://213.226.124.48APTTrail
URLhttp://45.95.234.10APTTrail
URLhttp://85.193.80.19APTTrail
URLhttp://85.193.83.224APTTrail
URLhttp://85.193.95.154APTTrail
URLhttp://85.217.170.140APTTrail
URLhttp://87.249.44.177APTTrail
URLhttp://89.223.68.22APTTrail
URLhttp://92.255.76.181APTTrail
URLhttp://92.53.107.216APTTrail
URLhttp://94.156.35.182APTTrail
URLhttp://94.228.121.36APTTrail

Referencias

Diamond Model

Adversary
magalenha
Ver perfil →
Victim
APTTrail: magalenha indicators and references
Capability
Ioc
Infrastructure
81.200.152.38:9000
http://128.199.228.142
http://128.199.68.249
http://157.245.44.246

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
IP 81.200.152.38:9000 APTTrail VT OffSec SOCRadar
URL http://128.199.228.142 APTTrail VT OffSec SOCRadar
URL http://128.199.68.249 APTTrail VT OffSec SOCRadar
URL http://157.245.44.246 APTTrail VT OffSec SOCRadar
URL http://176.57.221.92 APTTrail VT OffSec SOCRadar
URL http://178.128.174.182 APTTrail VT OffSec SOCRadar
URL http://193.218.204.207 APTTrail VT OffSec SOCRadar
URL http://2.59.41.206 APTTrail VT OffSec SOCRadar
URL http://213.226.124.48 APTTrail VT OffSec SOCRadar
URL http://45.95.234.10 APTTrail VT OffSec SOCRadar
URL http://85.193.80.19 APTTrail VT OffSec SOCRadar
URL http://85.193.83.224 APTTrail VT OffSec SOCRadar
URL http://85.193.95.154 APTTrail VT OffSec SOCRadar
URL http://85.217.170.140 APTTrail VT OffSec SOCRadar
URL http://87.249.44.177 APTTrail VT OffSec SOCRadar
URL http://89.223.68.22 APTTrail VT OffSec SOCRadar
URL http://92.255.76.181 APTTrail VT OffSec SOCRadar
URL http://92.53.107.216 APTTrail VT OffSec SOCRadar
URL http://94.156.35.182 APTTrail VT OffSec SOCRadar
URL http://94.228.121.36 APTTrail VT OffSec SOCRadar
Domain www.sentinelone.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor magalenha en el blog → Ver magalenha en IntelTracker → URL IntelTracker: www.sentinelone.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.sentinelone.com → Buscar magalenha en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters