jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT CLEAVER indicators and references

APTTrail: APT CLEAVER indicators and references

Ioc 1 min lectura apt-cleaver
Fecha
18 Jun 2026
Actor
apt-cleaver
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

17IOCs
0TTPs
apt-cleaverActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT CLEAVER. Aliases observados: APT CLEAVER. Conteo por tipo: domain: 15.

Key Points

  • http://www.cylance.com/assets/Cleaver/Cylance_Operation_Cleaver_Report.pdf

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT CLEAVER. Aliases observados: APT CLEAVER. Conteo por tipo: domain: 15.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domaindoosan-job.comAPTTrail
Domaindownloadsservers.comAPTTrail
Domaindrivercenterupdate.comAPTTrail
Domaineasyresumecreatorpro.comAPTTrail
Domaingoogleproductupdate.netAPTTrail
Domainmicrosoftmiddleast.comAPTTrail
Domainmicrosoftserverupdate.comAPTTrail
Domainmicrosoftwindowsresources.comAPTTrail
Domainmicrosoftwindowsupdate.netAPTTrail
Domainnorthropgrumman.netAPTTrail
Domainteledyne-jobs.comAPTTrail
Domainwindowscentralupdate.comAPTTrail
Domainwindowssecurityupdate.comAPTTrail
Domainwindowsserverupdate.comAPTTrail
Domainwindowsupdateserver.comAPTTrail

Referencias

Diamond Model

Adversary
apt-cleaver
Ver perfil →
Victim
APTTrail: APT CLEAVER indicators and references
Capability
Ioc
Infrastructure
doosan-job.com
downloadsservers.com
drivercenterupdate.com
easyresumecreatorpro.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain doosan-job.com APTTrail VT OffSec SOCRadar
Domain downloadsservers.com APTTrail VT OffSec SOCRadar
Domain drivercenterupdate.com APTTrail VT OffSec SOCRadar
Domain easyresumecreatorpro.com APTTrail VT OffSec SOCRadar
Domain googleproductupdate.net APTTrail VT OffSec SOCRadar
Domain microsoftmiddleast.com APTTrail VT OffSec SOCRadar
Domain microsoftserverupdate.com APTTrail VT OffSec SOCRadar
Domain microsoftwindowsresources.com APTTrail VT OffSec SOCRadar
Domain microsoftwindowsupdate.net APTTrail VT OffSec SOCRadar
Domain northropgrumman.net APTTrail VT OffSec SOCRadar
Domain teledyne-jobs.com APTTrail VT OffSec SOCRadar
Domain windowscentralupdate.com APTTrail VT OffSec SOCRadar
Domain windowssecurityupdate.com APTTrail VT OffSec SOCRadar
Domain windowsserverupdate.com APTTrail VT OffSec SOCRadar
Domain windowsupdateserver.com APTTrail VT OffSec SOCRadar
File Cylance_Operation_Cleaver_Report.pdf Artefacto observado VT OffSec SOCRadar
Domain www.cylance.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-cleaver en el blog → Ver apt-cleaver en IntelTracker → URL IntelTracker: www.cylance.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.cylance.com → Buscar apt-cleaver en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen