jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT IRONTIGER indicators and references

APTTrail: APT IRONTIGER indicators and references

Ioc 1 min lectura apt-irontiger
Fecha
18 Jun 2026
Actor
apt-irontiger
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-irontigerActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT IRONTIGER. Aliases observados: APT IRONTIGER. Conteo por tipo: domain: 84.

Key Points

  • http://www.secureworks.com/cyber-threat-intelligence/threats/threat-group-3390-targets-organizations-for-cyberespionage/
  • https://labs.bitdefender.com/wp-content/uploads/downloads/operation-pzchao-inside-a-highly-specialized-espionage-infrastructure/

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT IRONTIGER. Aliases observados: APT IRONTIGER. Conteo por tipo: domain: 84.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainamerican.blackcmd.comAPTTrail
Domainapi.apigmail.comAPTTrail
Domainapigmail.comAPTTrail
Domainbackup.darkhero.orgAPTTrail
Domainbel.updatawindows.comAPTTrail
Domainbinary.update-onlines.orgAPTTrail
Domainblackcmd.comAPTTrail
Domaincastle.blackcmd.comAPTTrail
Domaincenturiosa.infoAPTTrail
Domainctcb.blackcmd.comAPTTrail
Domaindarkhero.orgAPTTrail
Domaindav.local-test.comAPTTrail
Domaindev.local-test.comAPTTrail
Domaindll.pzchao.comAPTTrail
Domaindown.pzchao.comAPTTrail
Domainftp.google-ana1ytics.comAPTTrail
Domainga.blackcmd.comAPTTrail
Domaingoogle-ana1ytics.comAPTTrail
Domainhelpdesk.blackcmd.comAPTTrail
Domainhelpdesk.csc-na.comAPTTrail
Domainhelpdesk.hotmail-onlines.comAPTTrail
Domainhelpdesk.lnip.orgAPTTrail
Domainhotmail-onlines.comAPTTrail
Domainhotmailcontact.netAPTTrail
Domainjobs.hotmail-onlines.comAPTTrail
Domainjustufogame.comAPTTrail
Domainlaxness-lab.comAPTTrail
Domainlnip.orgAPTTrail
Domainlocal-test.comAPTTrail
Domainlogin.hansoftupdate.comAPTTrail

Referencias

Diamond Model

Adversary
apt-irontiger
Ver perfil →
Victim
APTTrail: APT IRONTIGER indicators and references
Capability
Ioc
Infrastructure
american.blackcmd.com
api.apigmail.com
apigmail.com
backup.darkhero.org

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain american.blackcmd.com APTTrail VT OffSec SOCRadar
Domain api.apigmail.com APTTrail VT OffSec SOCRadar
Domain apigmail.com APTTrail VT OffSec SOCRadar
Domain backup.darkhero.org APTTrail VT OffSec SOCRadar
Domain bel.updatawindows.com APTTrail VT OffSec SOCRadar
Domain binary.update-onlines.org APTTrail VT OffSec SOCRadar
Domain blackcmd.com APTTrail VT OffSec SOCRadar
Domain castle.blackcmd.com APTTrail VT OffSec SOCRadar
Domain centuriosa.info APTTrail VT OffSec SOCRadar
Domain ctcb.blackcmd.com APTTrail VT OffSec SOCRadar
Domain darkhero.org APTTrail VT OffSec SOCRadar
Domain dav.local-test.com APTTrail VT OffSec SOCRadar
Domain dev.local-test.com APTTrail VT OffSec SOCRadar
Domain dll.pzchao.com APTTrail VT OffSec SOCRadar
Domain down.pzchao.com APTTrail VT OffSec SOCRadar
Domain ftp.google-ana1ytics.com APTTrail VT OffSec SOCRadar
Domain ga.blackcmd.com APTTrail VT OffSec SOCRadar
Domain google-ana1ytics.com APTTrail VT OffSec SOCRadar
Domain helpdesk.blackcmd.com APTTrail VT OffSec SOCRadar
Domain helpdesk.csc-na.com APTTrail VT OffSec SOCRadar
Domain helpdesk.hotmail-onlines.com APTTrail VT OffSec SOCRadar
Domain helpdesk.lnip.org APTTrail VT OffSec SOCRadar
Domain hotmail-onlines.com APTTrail VT OffSec SOCRadar
Domain hotmailcontact.net APTTrail VT OffSec SOCRadar
Domain jobs.hotmail-onlines.com APTTrail VT OffSec SOCRadar
Domain justufogame.com APTTrail VT OffSec SOCRadar
Domain laxness-lab.com APTTrail VT OffSec SOCRadar
Domain lnip.org APTTrail VT OffSec SOCRadar
Domain local-test.com APTTrail VT OffSec SOCRadar
Domain login.hansoftupdate.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-irontiger en el blog → Ver apt-irontiger en IntelTracker → URL IntelTracker: www.secureworks.com→ URL IntelTracker: labs.bitdefender.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.secureworks.com→ Fuente OSINT: labs.bitdefender.com → Buscar apt-irontiger en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen