jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: apt34 indicators and references

APTTrail: apt34 indicators and references

Ioc 2 min lectura apt34
Fecha
18 Jun 2026
Actor
apt34
Tipo
Ioc
Pais
Iran
Sector
Government
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
apt34Actor
IranPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a apt34. Aliases observados: apt34, greenbug, helixkitten, oilrig, spearal, veaty. Conteo por tipo: domain: 217, file_path: 5, ipv4: 42, url: 3.

Key Points

  • https://app.validin.com/detail?find=151.236.17.231&type=ip4&ref_id=29bbecc74a1#tab=resolutions
  • https://app.validin.com/detail?find=185.76.78.177&type=ip4&ref_id=70a5c38659b#tab=resolutions
  • https://app.validin.com/detail?find=3981e30d1289ce1be9210c929a68bca0&type=hash&ref_id=f7daca57730#tab=host_pairs (# 2025-03-31)
  • https://app.validin.com/detail?find=b60d5beecd0576e7c59f2195e2462822f9d096cd&type=hash&ref_id=f7daca57730#tab=host_pairs (# 2025-03-31)
  • https://app.validin.com/detail?find=helllllllllllllllllllllllllo&type=raw&ref_id=ad162dcfc0e#tab=dns

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a apt34. Aliases observados: apt34, greenbug, helixkitten, oilrig, spearal, veaty. Conteo por tipo: domain: 217, file_path: 5, ipv4: 42, url: 3.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain262t3my0gt.cardioteacher.comAPTTrail
Domain2fhj.asiaworldremit.comAPTTrail
Domain2u21hipg70.uber-asia.comAPTTrail
Domain2zcf.uber-asia.comAPTTrail
Domain3j3oyvsf8i.joexpediagroup.comAPTTrail
Domain5s5gp24f8x.asiaworldremit.comAPTTrail
Domain6google.comAPTTrail
Domain7a7n4j60g4.cardioteacher.comAPTTrail
Domain7w7rbgt13f.uber-asia.comAPTTrail
Domainababab.bizAPTTrail
Domainacceptplan.comAPTTrail
Domainacrlee.comAPTTrail
Domainacrobatverify.comAPTTrail
Domainadmin.mofaiq.comAPTTrail
Domainakamai-global.comAPTTrail
Domainakastatus.comAPTTrail
Domainalcirineos.comAPTTrail
Domainalforatsystem.comAPTTrail
Domainallsecpackupdater.comAPTTrail
Domainamazon-loveyou.comAPTTrail
Domainanhuisiafu.comAPTTrail
Domainantivirus-update.topAPTTrail
Domainanyportals.comAPTTrail
Domainapplicationframehost.inAPTTrail
Domainapps.iqwebservice.comAPTTrail
Domainasiacall.netAPTTrail
Domainasiaworldremit.comAPTTrail
Domainastrazencea.comAPTTrail
Domainastrazeneeca.comAPTTrail
Domainaxoryvexity.euAPTTrail

Referencias

Diamond Model

Adversary
apt34
Ver perfil →
Victim
APTTrail: apt34 indicators and references
Iran
Capability
Ioc
Infrastructure
262t3my0gt.cardioteacher.com
2fhj.asiaworldremit.com
2u21hipg70.uber-asia.com
2zcf.uber-asia.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 262t3my0gt.cardioteacher.com APTTrail VT OffSec SOCRadar
Domain 2fhj.asiaworldremit.com APTTrail VT OffSec SOCRadar
Domain 2u21hipg70.uber-asia.com APTTrail VT OffSec SOCRadar
Domain 2zcf.uber-asia.com APTTrail VT OffSec SOCRadar
Domain 3j3oyvsf8i.joexpediagroup.com APTTrail VT OffSec SOCRadar
Domain 5s5gp24f8x.asiaworldremit.com APTTrail VT OffSec SOCRadar
Domain 6google.com APTTrail VT OffSec SOCRadar
Domain 7a7n4j60g4.cardioteacher.com APTTrail VT OffSec SOCRadar
Domain 7w7rbgt13f.uber-asia.com APTTrail VT OffSec SOCRadar
Domain ababab.biz APTTrail VT OffSec SOCRadar
Domain acceptplan.com APTTrail VT OffSec SOCRadar
Domain acrlee.com APTTrail VT OffSec SOCRadar
Domain acrobatverify.com APTTrail VT OffSec SOCRadar
Domain admin.mofaiq.com APTTrail VT OffSec SOCRadar
Domain akamai-global.com APTTrail VT OffSec SOCRadar
Domain akastatus.com APTTrail VT OffSec SOCRadar
Domain alcirineos.com APTTrail VT OffSec SOCRadar
Domain alforatsystem.com APTTrail VT OffSec SOCRadar
Domain allsecpackupdater.com APTTrail VT OffSec SOCRadar
Domain amazon-loveyou.com APTTrail VT OffSec SOCRadar
Domain anhuisiafu.com APTTrail VT OffSec SOCRadar
Domain antivirus-update.top APTTrail VT OffSec SOCRadar
Domain anyportals.com APTTrail VT OffSec SOCRadar
Domain applicationframehost.in APTTrail VT OffSec SOCRadar
Domain apps.iqwebservice.com APTTrail VT OffSec SOCRadar
Domain asiacall.net APTTrail VT OffSec SOCRadar
Domain asiaworldremit.com APTTrail VT OffSec SOCRadar
Domain astrazencea.com APTTrail VT OffSec SOCRadar
Domain astrazeneeca.com APTTrail VT OffSec SOCRadar
Domain axoryvexity.eu APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor apt34 en el blog → Ver apt34 en IntelTracker → URL IntelTracker: app.validin.com→ URL IntelTracker: app.validin.com→ URL IntelTracker: app.validin.com→ URL IntelTracker: app.validin.com→ URL IntelTracker: app.validin.com→ URL IntelTracker: blog.malwarebytes.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: app.validin.com→ Fuente OSINT: app.validin.com→ Fuente OSINT: app.validin.com→ Fuente OSINT: app.validin.com → Buscar apt34 en APTTrail → Repositorio APTTrail → Mas incidentes en Iran → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen