jordiserrano.me ClickFix KAIROS IntelTracker

APTTrail: APT LEAFMINER indicators and references

Ioc 18 Jun 2026 1 min lectura apt-leafminer

Fecha

18 Jun 2026

Actor

apt-leafminer

Tipo

Ioc

Pais

United States

Sector

Confianza

high

Prioridad analitica

Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

8IOCs

0TTPs

apt-leafminerActor

United StatesPais

Executive Summary

APTTrail mantiene indicadores publicos asociados a APT LEAFMINER. Aliases observados: APT LEAFMINER. Conteo por tipo: domain: 7.

Key Points

https://www.symantec.com/blogs/threat-intelligence/leafminer-espionage-middle-east

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT LEAFMINER. Aliases observados: APT LEAFMINER. Conteo por tipo: domain: 7.

Indicadores de Compromiso (IOCs)

Tipo	Valor	Contexto
Domain	`adobe-flash.us`	APTTrail
Domain	`adobe-plugin.bid`	APTTrail
Domain	`ilhost.in`	APTTrail
Domain	`iqhost.us`	APTTrail
Domain	`microsoft-office-free-templates-download.btc-int.in`	APTTrail
Domain	`microsoft-office-free-templates.in`	APTTrail
Domain	`offiice365.us`	APTTrail

Referencias

https://www.symantec.com/blogs/threat-intelligence/leafminer-espionage-middle-east

Diamond Model

Adversary

apt-leafminer

Ver perfil →

Victim

APTTrail: APT LEAFMINER indicators and references

United States

Capability

Ioc

Infrastructure

adobe-flash.us

adobe-plugin.bid

ilhost.in

iqhost.us

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

5 enlaces

Domain

www.symantec.com

IOC compartido

IntelTracker / OSINT link

www.symantec.com

apt-leafminer

enlace asociado al actor

IntelTracker / OSINT link

github.com

apt-leafminer

enlace asociado al actor

IntelTracker / OSINT link

raw.githubusercontent.com

apt-leafminer

enlace asociado al actor

Nodo actual

APTTrail: APT LEAFMINER indicators and references

apt-leafminer · United States

Victima

APTTrail: APT NEWSBEEF indicators and references

www.symantec.com

IOC compartido

Victima

APTTrail: APT STONEDRILL indicators and references

www.symantec.com

IOC compartido

Indicadores de Compromiso (IOCs)

Tipo	Valor	Contexto	OSINT
Domain	adobe-flash.us	APTTrail	VT OffSec SOCRadar
Domain	adobe-plugin.bid	APTTrail	VT OffSec SOCRadar
Domain	ilhost.in	APTTrail	VT OffSec SOCRadar
Domain	iqhost.us	APTTrail	VT OffSec SOCRadar
Domain	microsoft-office-free-templates-download.btc-int.in	APTTrail	VT OffSec SOCRadar
Domain	microsoft-office-free-templates.in	APTTrail	VT OffSec SOCRadar
Domain	offiice365.us	APTTrail	VT OffSec SOCRadar
Domain	www.symantec.com	Extraido del contenido	VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-leafminer en el blog → Ver apt-leafminer en IntelTracker → URL IntelTracker: www.symantec.com → Fuente OSINT: github.com → Fuente OSINT: raw.githubusercontent.com → Fuente OSINT: www.symantec.com → Buscar apt-leafminer en APTTrail → Repositorio APTTrail → Mas incidentes en United States → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog

← Volver al panel de inteligencia

Incidentes recientes

Indicadores de Compromiso

Tipo	Valor
Domain	adobe-flash.us
Domain	adobe-plugin.bid
Domain	ilhost.in
Domain	iqhost.us
Domain	microsoft-office-free-templates-download.btc-int.in
Domain	microsoft-office-free-templates.in
Domain	offiice365.us
Domain	www.symantec.com