jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT SHARPPANDA indicators and references

APTTrail: APT SHARPPANDA indicators and references

Ioc 1 min lectura apt-sharppanda
Fecha
18 Jun 2026
Actor
apt-sharppanda
Tipo
Ioc
Pais
Vietnam
Sector
Government
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt-sharppandaActor
VietnamPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT SHARPPANDA. Aliases observados: APT SHARPPANDA. Conteo por tipo: domain: 5, file_path: 10, ipv4: 5, url: 8.

Key Points

  • https://blog.vincss.net/2021/05/re022-phan-1-phan-tich-nhanh-mau-ma-doc-gia-mao-cong-van-cua-uy-ban-kiem-tra-tw-VietNam.html
  • https://otx.alienvault.com/pulse/60b8bbf9744408d3a83062f7
  • https://research.checkpoint.com/2021/chinese-apt-group-targets-southeast-asian-government-with-previously-unknown-backdoor/
  • https://twitter.com/ShadowChasing1/status/1485514043679199233
  • https://twitter.com/StopMalvertisin/status/1583663484725694464

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT SHARPPANDA. Aliases observados: APT SHARPPANDA. Conteo por tipo: domain: 5, file_path: 10, ipv4: 5, url: 8.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainoffice.oiqezet.comAPTTrail
Domainoiqezet.comAPTTrail
Domainopenxmlformats.shopAPTTrail
Domainschemas.openxmlformats.shopAPTTrail
Domaintemplate-content.azurecloudapp.workers.devAPTTrail
FILE_PATH/2Onp0som.phpAPTTrail
FILE_PATH/G0AnyWhere_up.jspAPTTrail
FILE_PATH/IGxWyLQI/2Onp0som.phpAPTTrail
FILE_PATH/IRg4hRs9/j3kzZ9Yo.phpAPTTrail
FILE_PATH/IRg4hRs9/tzM1cuw5.pngAPTTrail
FILE_PATH/KJ8oqzlG.pngAPTTrail
FILE_PATH/WindowsTime/update.php?Data=APTTrail
FILE_PATH/YbZe6AQE/KJ8oqzlG.pngAPTTrail
FILE_PATH/j3kzZ9Yo.phpAPTTrail
FILE_PATH/tzM1cuw5.pngAPTTrail
IP107.148.165.151:443APTTrail
IP13.236.189.80:8001APTTrail
IP45.121.146.88:443APTTrail
IP45.76.190.210:443APTTrail
IP45.91.225.139:443APTTrail
URLhttp://103.213.247.48APTTrail
URLhttp://107.148.165.151APTTrail
URLhttp://139.180.137.73APTTrail
URLhttp://139.180.138.49APTTrail
URLhttp://38.54.31.43APTTrail
URLhttp://45.121.146.88APTTrail
URLhttp://45.76.190.210APTTrail
URLhttp://45.91.225.139APTTrail

Referencias

Diamond Model

Adversary
apt-sharppanda
Ver perfil →
Victim
APTTrail: APT SHARPPANDA indicators and references
Vietnam
Capability
Ioc
Infrastructure
office.oiqezet.com
oiqezet.com
openxmlformats.shop
schemas.openxmlformats.shop

Relations

Mapa de nodos relacionados por IOCs compartidos, actor, enlaces IntelTracker/OSINT, campanas y victimas observadas. Haz click en un nodo para abrir el post, filtro o fuente.

16 enlaces
Domain
otx.alienvault.com
IOC compartido
IntelTracker / OSINT link
blog.vincss.net
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
otx.alienvault.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
research.checkpoint.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
twitter.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
twitter.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
twitter.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
twitter.com
apt-sharppanda
enlace asociado al actor
IntelTracker / OSINT link
twitter.com
apt-sharppanda
enlace asociado al actor
Nodo actual
APTTrail: APT SHARPPANDA indicators and references
apt-sharppanda · Vietnam
Victima
APTTrail: apt-c-12 indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT 38 indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT ATLASCROSS indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT BABYSHARK indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT BLUEPRINT indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: m00nlight indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT EARTHWENDIGO indicators and references
otx.alienvault.com
IOC compartido
Victima
APTTrail: APT EGOMANIAC indicators and references
otx.alienvault.com
IOC compartido

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain office.oiqezet.com APTTrail VT OffSec SOCRadar
Domain oiqezet.com APTTrail VT OffSec SOCRadar
Domain openxmlformats.shop APTTrail VT OffSec SOCRadar
Domain schemas.openxmlformats.shop APTTrail VT OffSec SOCRadar
Domain template-content.azurecloudapp.workers.dev APTTrail VT OffSec SOCRadar
FILE_PATH /2Onp0som.php APTTrail VT OffSec SOCRadar
FILE_PATH /G0AnyWhere_up.jsp APTTrail VT OffSec SOCRadar
FILE_PATH /IGxWyLQI/2Onp0som.php APTTrail VT OffSec SOCRadar
FILE_PATH /IRg4hRs9/j3kzZ9Yo.php APTTrail VT OffSec SOCRadar
FILE_PATH /IRg4hRs9/tzM1cuw5.png APTTrail VT OffSec SOCRadar
FILE_PATH /KJ8oqzlG.png APTTrail VT OffSec SOCRadar
FILE_PATH /WindowsTime/update.php?Data= APTTrail VT OffSec SOCRadar
FILE_PATH /YbZe6AQE/KJ8oqzlG.png APTTrail VT OffSec SOCRadar
FILE_PATH /j3kzZ9Yo.php APTTrail VT OffSec SOCRadar
FILE_PATH /tzM1cuw5.png APTTrail VT OffSec SOCRadar
IP 107.148.165.151:443 APTTrail VT OffSec SOCRadar
IP 13.236.189.80:8001 APTTrail VT OffSec SOCRadar
IP 45.121.146.88:443 APTTrail VT OffSec SOCRadar
IP 45.76.190.210:443 APTTrail VT OffSec SOCRadar
IP 45.91.225.139:443 APTTrail VT OffSec SOCRadar
URL http://103.213.247.48 APTTrail VT OffSec SOCRadar
URL http://107.148.165.151 APTTrail VT OffSec SOCRadar
URL http://139.180.137.73 APTTrail VT OffSec SOCRadar
URL http://139.180.138.49 APTTrail VT OffSec SOCRadar
URL http://38.54.31.43 APTTrail VT OffSec SOCRadar
URL http://45.121.146.88 APTTrail VT OffSec SOCRadar
URL http://45.76.190.210 APTTrail VT OffSec SOCRadar
URL http://45.91.225.139 APTTrail VT OffSec SOCRadar
Domain blog.vincss.net Extraido del contenido VT OffSec SOCRadar
Domain otx.alienvault.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-sharppanda en el blog → Ver apt-sharppanda en IntelTracker → URL IntelTracker: blog.vincss.net→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: research.checkpoint.com→ URL IntelTracker: twitter.com→ URL IntelTracker: twitter.com→ URL IntelTracker: twitter.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: blog.vincss.net→ Fuente OSINT: otx.alienvault.com→ Fuente OSINT: research.checkpoint.com→ Fuente OSINT: twitter.com → Buscar apt-sharppanda en APTTrail → Repositorio APTTrail → Mas incidentes en Vietnam → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen