jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT NETTRAVELER indicators and references

APTTrail: APT NETTRAVELER indicators and references

Ioc 1 min lectura apt-nettraveler
Fecha
18 Jun 2026
Actor
apt-nettraveler
Tipo
Ioc
Pais
Russia
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-nettravelerActor
RussiaPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT NETTRAVELER. Aliases observados: APT NETTRAVELER. Conteo por tipo: domain: 45.

Key Points

  • http://securelist.com/blog/research/35936/nettraveler-is-running-red-star-apt-attacks-compromise-high-profile-victims/
  • https://www.proofpoint.com/us/threat-insight/post/nettraveler-apt-targets-russian-european-interests

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT NETTRAVELER. Aliases observados: APT NETTRAVELER. Conteo por tipo: domain: 45.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainallen.w223.west263.cnAPTTrail
Domainandriodphone.netAPTTrail
Domainbauer.8866.orgAPTTrail
Domainbuynewes.comAPTTrail
Domaincultureacess.comAPTTrail
Domaindiscoverypeace.orgAPTTrail
Domaindrag2008.comAPTTrail
Domaineaglesey.comAPTTrail
Domainenterairment.netAPTTrail
Domaingami1.comAPTTrail
Domainglobalmailru.comAPTTrail
Domainhint09.9966.orgAPTTrail
Domainimapupdate.comAPTTrail
Domaininfo-spb.comAPTTrail
Domaininterfaxru.comAPTTrail
Domaininwpvpn.comAPTTrail
Domainkeyboardhk.comAPTTrail
Domainlocalgroupnet.comAPTTrail
Domainmailyandexru.comAPTTrail
Domainmogoogle.comAPTTrail
Domainmsnnewes.comAPTTrail
Domainnewesyahoo.comAPTTrail
Domainnewfax.netAPTTrail
Domainpkspring.netAPTTrail
Domainra1nru.comAPTTrail
Domainramb1er.comAPTTrail
Domainriaru.netAPTTrail
Domainsghrhd.190.20081.infoAPTTrail
Domainsouthstock.netAPTTrail
Domainspit113.minidns.netAPTTrail

Referencias

Diamond Model

Adversary
apt-nettraveler
Ver perfil →
Victim
APTTrail: APT NETTRAVELER indicators and references
Russia
Capability
Ioc
Infrastructure
allen.w223.west263.cn
andriodphone.net
bauer.8866.org
buynewes.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain allen.w223.west263.cn APTTrail VT OffSec SOCRadar
Domain andriodphone.net APTTrail VT OffSec SOCRadar
Domain bauer.8866.org APTTrail VT OffSec SOCRadar
Domain buynewes.com APTTrail VT OffSec SOCRadar
Domain cultureacess.com APTTrail VT OffSec SOCRadar
Domain discoverypeace.org APTTrail VT OffSec SOCRadar
Domain drag2008.com APTTrail VT OffSec SOCRadar
Domain eaglesey.com APTTrail VT OffSec SOCRadar
Domain enterairment.net APTTrail VT OffSec SOCRadar
Domain gami1.com APTTrail VT OffSec SOCRadar
Domain globalmailru.com APTTrail VT OffSec SOCRadar
Domain hint09.9966.org APTTrail VT OffSec SOCRadar
Domain imapupdate.com APTTrail VT OffSec SOCRadar
Domain info-spb.com APTTrail VT OffSec SOCRadar
Domain interfaxru.com APTTrail VT OffSec SOCRadar
Domain inwpvpn.com APTTrail VT OffSec SOCRadar
Domain keyboardhk.com APTTrail VT OffSec SOCRadar
Domain localgroupnet.com APTTrail VT OffSec SOCRadar
Domain mailyandexru.com APTTrail VT OffSec SOCRadar
Domain mogoogle.com APTTrail VT OffSec SOCRadar
Domain msnnewes.com APTTrail VT OffSec SOCRadar
Domain newesyahoo.com APTTrail VT OffSec SOCRadar
Domain newfax.net APTTrail VT OffSec SOCRadar
Domain pkspring.net APTTrail VT OffSec SOCRadar
Domain ra1nru.com APTTrail VT OffSec SOCRadar
Domain ramb1er.com APTTrail VT OffSec SOCRadar
Domain riaru.net APTTrail VT OffSec SOCRadar
Domain sghrhd.190.20081.info APTTrail VT OffSec SOCRadar
Domain southstock.net APTTrail VT OffSec SOCRadar
Domain spit113.minidns.net APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-nettraveler en el blog → Ver apt-nettraveler en IntelTracker → URL IntelTracker: securelist.com→ URL IntelTracker: www.proofpoint.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: securelist.com→ Fuente OSINT: www.proofpoint.com → Buscar apt-nettraveler en APTTrail → Repositorio APTTrail → Mas incidentes en Russia → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen