jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: aguilaciega indicators and references

APTTrail: aguilaciega indicators and references

Ioc 1 min lectura aguilaciega
Fecha
18 Jun 2026
Actor
aguilaciega
Tipo
Ioc
Pais
United States
Sector
Government
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
aguilaciegaActor
United StatesPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a aguilaciega. Aliases observados: aguilaciega, apt-c-36, apt-q-98, apt36, blind eagle, blotchyquasar, tag-144. Conteo por tipo: domain: 64, file_path: 1, ipv4: 20, url: 9.

Key Points

  • https://gist.github.com/kirk-sayre-work/354d875086bb533b3095dc06b7537869
  • https://mp.weixin.qq.com/s/-7U1-NTP0EdVOtptzbHUsg (Chinese)
  • https://otx.alienvault.com/pulse/64419d343c9d98fc279185f7
  • https://research.checkpoint.com/2023/blindeagle-targeting-ecuador-with-sharpened-tools/
  • https://ti.360.net/blog/articles/apt-c-36-continuous-attacks-targeting-colombian-government-institutions-and-corporations-en/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a aguilaciega. Aliases observados: aguilaciega, apt-c-36, apt-q-98, apt36, blind eagle, blotchyquasar, tag-144. Conteo por tipo: domain: 64, file_path: 1, ipv4: 20, url: 9.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainajaxcoder.polycomusa.comAPTTrail
Domainaseguradotelle.duckdns.orgAPTTrail
Domainautgerman.autgerman.comAPTTrail
Domainautgerman.comAPTTrail
Domainaxu87794.polycomusa.comAPTTrail
Domainceoempresarialsas.comAPTTrail
Domainceosas.linkpc.netAPTTrail
Domainceoseguros.comAPTTrail
Domainchileimportaciones.clAPTTrail
Domaincryptersandtools.minhacasa.tvAPTTrail
Domaindefenderav.con-ip.comAPTTrail
Domaindian.server.tlAPTTrail
Domaindiangovcomuiscia.comAPTTrail
Domainedificiobaldeares.linkpc.netAPTTrail
Domainenero2022.con-ip.comAPTTrail
Domainenvio02-04.duckdns.orgAPTTrail
Domainenvio14-03.duckdns.orgAPTTrail
Domainenvio1414.duckdns.orgAPTTrail
Domainenvio19-05.duckdns.orgAPTTrail
Domainenvio21-05.duckdns.orgAPTTrail
Domainenvio2333.duckdns.orgAPTTrail
Domainenvio26-03.duckdns.orgAPTTrail
Domainenvio28-003.duckdns.orgAPTTrail
Domainenvio29.duckdns.orgAPTTrail
Domainenvio31-03.duckdns.orgAPTTrail
Domainequipo.linkpc.netAPTTrail
Domainfebenvi.duckdns.orgAPTTrail
Domaingiraffebear.polycomusa.comAPTTrail
Domainhellmagers.polycomusa.comAPTTrail
Domainhost-rami.polycomusa.comAPTTrail

Referencias

Diamond Model

Adversary
aguilaciega
Ver perfil →
Victim
APTTrail: aguilaciega indicators and references
United States
Capability
Ioc
Infrastructure
ajaxcoder.polycomusa.com
aseguradotelle.duckdns.org
autgerman.autgerman.com
autgerman.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain ajaxcoder.polycomusa.com APTTrail VT OffSec SOCRadar
Domain aseguradotelle.duckdns.org APTTrail VT OffSec SOCRadar
Domain autgerman.autgerman.com APTTrail VT OffSec SOCRadar
Domain autgerman.com APTTrail VT OffSec SOCRadar
Domain axu87794.polycomusa.com APTTrail VT OffSec SOCRadar
Domain ceoempresarialsas.com APTTrail VT OffSec SOCRadar
Domain ceosas.linkpc.net APTTrail VT OffSec SOCRadar
Domain ceoseguros.com APTTrail VT OffSec SOCRadar
Domain chileimportaciones.cl APTTrail VT OffSec SOCRadar
Domain cryptersandtools.minhacasa.tv APTTrail VT OffSec SOCRadar
Domain defenderav.con-ip.com APTTrail VT OffSec SOCRadar
Domain dian.server.tl APTTrail VT OffSec SOCRadar
Domain diangovcomuiscia.com APTTrail VT OffSec SOCRadar
Domain edificiobaldeares.linkpc.net APTTrail VT OffSec SOCRadar
Domain enero2022.con-ip.com APTTrail VT OffSec SOCRadar
Domain envio02-04.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio14-03.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio1414.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio19-05.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio21-05.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio2333.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio26-03.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio28-003.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio29.duckdns.org APTTrail VT OffSec SOCRadar
Domain envio31-03.duckdns.org APTTrail VT OffSec SOCRadar
Domain equipo.linkpc.net APTTrail VT OffSec SOCRadar
Domain febenvi.duckdns.org APTTrail VT OffSec SOCRadar
Domain giraffebear.polycomusa.com APTTrail VT OffSec SOCRadar
Domain hellmagers.polycomusa.com APTTrail VT OffSec SOCRadar
Domain host-rami.polycomusa.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor aguilaciega en el blog → Ver aguilaciega en IntelTracker → URL IntelTracker: gist.github.com→ URL IntelTracker: mp.weixin.qq.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: research.checkpoint.com→ URL IntelTracker: ti.360.net→ URL IntelTracker: tria.ge → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: gist.github.com→ Fuente OSINT: mp.weixin.qq.com→ Fuente OSINT: otx.alienvault.com→ Fuente OSINT: research.checkpoint.com → Buscar aguilaciega en APTTrail → Repositorio APTTrail → Mas incidentes en United States → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen