jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: bisonal indicators and references

APTTrail: bisonal indicators and references

Ioc 1 min lectura bisonal
Fecha
18 Jun 2026
Actor
bisonal
Tipo
Ioc
Pais
United States
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
bisonalActor
United StatesPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a bisonal. Aliases observados: bisonal, tonto, tontoteam. Conteo por tipo: domain: 232, file_path: 5, ipv4: 5, url: 4.

Key Points

  • https://app.any.run/tasks/4c751168-358a-49c9-b751-e5b4aad9b060/
  • https://asec.ahnlab.com/1298
  • https://asec.ahnlab.com/en/51746/
  • https://asec.ahnlab.com/ko/33948/ (Korean)
  • https://blog.talosintelligence.com/2020/03/bisonal-10-years-of-play.html

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a bisonal. Aliases observados: bisonal, tonto, tontoteam. Conteo por tipo: domain: 232, file_path: 5, ipv4: 5, url: 4.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain0906.toh.infoAPTTrail
Domain21kmg.my-homeip.netAPTTrail
Domainabulasha-banama.onedumb.comAPTTrail
Domainacivo.serveblog.netAPTTrail
Domainadobe-online.comAPTTrail
Domainadoberevise.comAPTTrail
Domainadobeupdata.zzux.comAPTTrail
Domainadobeupdate.dns04.comAPTTrail
Domainagent.my-homeip.netAPTTrail
Domainalleyk.onthewifi.comAPTTrail
Domainamanser951.otzo.comAPTTrail
Domainanna111.epac.toAPTTrail
Domainanrnet.servegame.comAPTTrail
Domainapplejp.myfw.usAPTTrail
Domainasheepa.sytes.netAPTTrail
Domainattachdaum.servecounterstrike.comAPTTrail
Domainattachmaildaum.serveblog.netAPTTrail
Domainattachmaildaum.servecounterstrike.comAPTTrail
Domainbabyhome.lflink.comAPTTrail
Domainbabyhome.mefound.comAPTTrail
Domainbaekmaonline.comAPTTrail
Domainbbc.xxxy.infoAPTTrail
Domainbeatidc.comAPTTrail
Domainbest.indoingwulearn.comAPTTrail
Domainbitsshare.comAPTTrail
Domainbizmeka.viewdns.netAPTTrail
Domainbluecat.mefound.comAPTTrail
Domainbluesky.jkub.comAPTTrail
Domainbravojack.justdied.comAPTTrail
Domainbucketnec.bounceme.netAPTTrail

Referencias

Diamond Model

Adversary
bisonal
Ver perfil →
Victim
APTTrail: bisonal indicators and references
United States
Capability
Ioc
Infrastructure
0906.toh.info
21kmg.my-homeip.net
abulasha-banama.onedumb.com
acivo.serveblog.net

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 0906.toh.info APTTrail VT OffSec SOCRadar
Domain 21kmg.my-homeip.net APTTrail VT OffSec SOCRadar
Domain abulasha-banama.onedumb.com APTTrail VT OffSec SOCRadar
Domain acivo.serveblog.net APTTrail VT OffSec SOCRadar
Domain adobe-online.com APTTrail VT OffSec SOCRadar
Domain adoberevise.com APTTrail VT OffSec SOCRadar
Domain adobeupdata.zzux.com APTTrail VT OffSec SOCRadar
Domain adobeupdate.dns04.com APTTrail VT OffSec SOCRadar
Domain agent.my-homeip.net APTTrail VT OffSec SOCRadar
Domain alleyk.onthewifi.com APTTrail VT OffSec SOCRadar
Domain amanser951.otzo.com APTTrail VT OffSec SOCRadar
Domain anna111.epac.to APTTrail VT OffSec SOCRadar
Domain anrnet.servegame.com APTTrail VT OffSec SOCRadar
Domain applejp.myfw.us APTTrail VT OffSec SOCRadar
Domain asheepa.sytes.net APTTrail VT OffSec SOCRadar
Domain attachdaum.servecounterstrike.com APTTrail VT OffSec SOCRadar
Domain attachmaildaum.serveblog.net APTTrail VT OffSec SOCRadar
Domain attachmaildaum.servecounterstrike.com APTTrail VT OffSec SOCRadar
Domain babyhome.lflink.com APTTrail VT OffSec SOCRadar
Domain babyhome.mefound.com APTTrail VT OffSec SOCRadar
Domain baekmaonline.com APTTrail VT OffSec SOCRadar
Domain bbc.xxxy.info APTTrail VT OffSec SOCRadar
Domain beatidc.com APTTrail VT OffSec SOCRadar
Domain best.indoingwulearn.com APTTrail VT OffSec SOCRadar
Domain bitsshare.com APTTrail VT OffSec SOCRadar
Domain bizmeka.viewdns.net APTTrail VT OffSec SOCRadar
Domain bluecat.mefound.com APTTrail VT OffSec SOCRadar
Domain bluesky.jkub.com APTTrail VT OffSec SOCRadar
Domain bravojack.justdied.com APTTrail VT OffSec SOCRadar
Domain bucketnec.bounceme.net APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor bisonal en el blog → Ver bisonal en IntelTracker → URL IntelTracker: app.any.run→ URL IntelTracker: asec.ahnlab.com→ URL IntelTracker: asec.ahnlab.com→ URL IntelTracker: asec.ahnlab.com→ URL IntelTracker: blog.talosintelligence.com→ URL IntelTracker: docs.google.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: app.any.run→ Fuente OSINT: asec.ahnlab.com→ Fuente OSINT: asec.ahnlab.com→ Fuente OSINT: asec.ahnlab.com → Buscar bisonal en APTTrail → Repositorio APTTrail → Mas incidentes en United States → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen