jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: taxoff indicators and references

APTTrail: taxoff indicators and references

Ioc 2 min lectura taxoff
Fecha
18 Jun 2026
Actor
taxoff
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
taxoffActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a taxoff. Aliases observados: taxoff, team46. Conteo por tipo: domain: 49.

Key Points

  • https://app.validin.com/detail?find=Future%20Bull&type=raw&ref_id=41bde129bf6#tab=host_pairs (# 2025-06-18)
  • https://global.ptsecurity.com/analytics/pt-esc-threat-intelligence/team46-and-taxoff-two-sides-of-the-same-coin
  • https://habr.com/ru/companies/pt/articles/841176/
  • https://securelist.com/operation-forumtroll-new-targeted-campaign/118492/
  • https://securelist.com/operation-forumtroll/115989/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a taxoff. Aliases observados: taxoff, team46. Conteo por tipo: domain: 49.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain2025primakovreadings.infoAPTTrail
Domainads-stream-api-v2.global.ssl.fastly.netAPTTrail
Domainadvertnow.orgAPTTrail
Domainadverty.infoAPTTrail
Domainbrowser-time-stats.global.ssl.fastly.netAPTTrail
Domainbus-pod-tenant.global.ssl.fastly.netAPTTrail
Domainclip-rdp-api.global.ssl.fastly.netAPTTrail
Domaincommon-rdp-front.global.ssl.fastly.netAPTTrail
Domaincorptravel.orgAPTTrail
Domaincybers46.teamAPTTrail
Domaincybers4646.my.idAPTTrail
Domaine-library.wikiAPTTrail
Domainelibrary.wikiAPTTrail
Domainfast-telemetry-api.global.ssl.fastly.netAPTTrail
Domainfeedstream.infoAPTTrail
Domainfront-static-api.global.ssl.fastly.netAPTTrail
Domainfuturebull.liveAPTTrail
Domainfuturebull.netAPTTrail
Domainglobaloneai.comAPTTrail
Domaininfosecteam.infoAPTTrail
Domainkant300.kantiana.infoAPTTrail
Domainkantiana.infoAPTTrail
Domainkpmedia.cityAPTTrail
Domainmain-front-api.global.ssl.fastly.netAPTTrail
Domainmediaoprosso.ruAPTTrail
Domainmil-by.infoAPTTrail
Domainmoscow.corptravel.orgAPTTrail
Domainms-appdata-fonts.global.ssl.fastly.netAPTTrail
Domainms-appdata-main.global.ssl.fastly.netAPTTrail
Domainms-appdata-query.global.ssl.fastly.netAPTTrail

Referencias

Diamond Model

Adversary
taxoff
Ver perfil →
Victim
APTTrail: taxoff indicators and references
Capability
Ioc
Infrastructure
2025primakovreadings.info
ads-stream-api-v2.global.ssl.fastly.net
advertnow.org
adverty.info

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 2025primakovreadings.info APTTrail VT OffSec SOCRadar
Domain ads-stream-api-v2.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain advertnow.org APTTrail VT OffSec SOCRadar
Domain adverty.info APTTrail VT OffSec SOCRadar
Domain browser-time-stats.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain bus-pod-tenant.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain clip-rdp-api.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain common-rdp-front.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain corptravel.org APTTrail VT OffSec SOCRadar
Domain cybers46.team APTTrail VT OffSec SOCRadar
Domain cybers4646.my.id APTTrail VT OffSec SOCRadar
Domain e-library.wiki APTTrail VT OffSec SOCRadar
Domain elibrary.wiki APTTrail VT OffSec SOCRadar
Domain fast-telemetry-api.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain feedstream.info APTTrail VT OffSec SOCRadar
Domain front-static-api.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain futurebull.live APTTrail VT OffSec SOCRadar
Domain futurebull.net APTTrail VT OffSec SOCRadar
Domain globaloneai.com APTTrail VT OffSec SOCRadar
Domain infosecteam.info APTTrail VT OffSec SOCRadar
Domain kant300.kantiana.info APTTrail VT OffSec SOCRadar
Domain kantiana.info APTTrail VT OffSec SOCRadar
Domain kpmedia.city APTTrail VT OffSec SOCRadar
Domain main-front-api.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain mediaoprosso.ru APTTrail VT OffSec SOCRadar
Domain mil-by.info APTTrail VT OffSec SOCRadar
Domain moscow.corptravel.org APTTrail VT OffSec SOCRadar
Domain ms-appdata-fonts.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain ms-appdata-main.global.ssl.fastly.net APTTrail VT OffSec SOCRadar
Domain ms-appdata-query.global.ssl.fastly.net APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor taxoff en el blog → Ver taxoff en IntelTracker → URL IntelTracker: app.validin.com→ URL IntelTracker: global.ptsecurity.com→ URL IntelTracker: habr.com→ URL IntelTracker: securelist.com→ URL IntelTracker: securelist.com→ URL IntelTracker: twitter.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: app.validin.com→ Fuente OSINT: global.ptsecurity.com→ Fuente OSINT: habr.com→ Fuente OSINT: securelist.com → Buscar taxoff en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

June 2026 Stealer Logs18 Jun 2026 · breach CFGI18 Jun 2026 · breach Berkadia18 Jun 2026 · breach Infinite Campus18 Jun 2026 · breach Horizon Family Medical Group18 Jun 2026 · incransom www.wolfconstruction.net18 Jun 2026 · lynx Amazon owned OneMedical.com18 Jun 2026 · shinyhunters NAIC.org18 Jun 2026 · shinyhunters