jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: APT SNOWMAN indicators and references

APTTrail: APT SNOWMAN indicators and references

Ioc 1 min lectura apt-snowman
Fecha
18 Jun 2026
Actor
apt-snowman
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
95
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

9IOCs
0TTPs
apt-snowmanActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a APT SNOWMAN. Aliases observados: APT SNOWMAN. Conteo por tipo: domain: 8.

Key Points

  • https://www.fireeye.com/blog/threat-research/2014/02/operation-snowman-deputydog-actor-compromises-us-veterans-of-foreign-wars-website.html

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a APT SNOWMAN. Aliases observados: APT SNOWMAN. Conteo por tipo: domain: 8.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainali.blankchair.comAPTTrail
Domainbook.flnet.orgAPTTrail
Domaincht.blankchair.comAPTTrail
Domaindll.freshdns.orgAPTTrail
Domainicybin.flnet.orgAPTTrail
Domaininfo.flnet.orgAPTTrail
Domainme.scieron.comAPTTrail
Domainrt.blankchair.comAPTTrail

Referencias

Diamond Model

Adversary
apt-snowman
Ver perfil →
Victim
APTTrail: APT SNOWMAN indicators and references
Capability
Ioc
Infrastructure
ali.blankchair.com
book.flnet.org
cht.blankchair.com
dll.freshdns.org

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain ali.blankchair.com APTTrail VT OffSec SOCRadar
Domain book.flnet.org APTTrail VT OffSec SOCRadar
Domain cht.blankchair.com APTTrail VT OffSec SOCRadar
Domain dll.freshdns.org APTTrail VT OffSec SOCRadar
Domain icybin.flnet.org APTTrail VT OffSec SOCRadar
Domain info.flnet.org APTTrail VT OffSec SOCRadar
Domain me.scieron.com APTTrail VT OffSec SOCRadar
Domain rt.blankchair.com APTTrail VT OffSec SOCRadar
Domain www.fireeye.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt-snowman en el blog → Ver apt-snowman en IntelTracker → URL IntelTracker: www.fireeye.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.fireeye.com → Buscar apt-snowman en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen