jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: exilerat indicators and references

APTTrail: exilerat indicators and references

Ioc 1 min lectura exilerat
Fecha
18 Jun 2026
Actor
exilerat
Tipo
Ioc
Pais
India
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
exileratActor
IndiaPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a exilerat. Aliases observados: exilerat, luckycat, sepulcher, shadownet, ta413. Conteo por tipo: domain: 56, ipv4: 8, url: 1.

Key Points

  • http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp_luckycat_redux.pdf
  • https://blog.talosintelligence.com/2019/02/exilerat-shares-c2-with-luckycat.html
  • https://otx.alienvault.com/pulse/5f4faad08bc69edf206bf6b6
  • https://otx.alienvault.com/pulse/6037c5dff774e1d70491bf0d/
  • https://twitter.com/threatinsight/status/1531688214993555457

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a exilerat. Aliases observados: exilerat, luckycat, sepulcher, shadownet, ta413. Conteo por tipo: domain: 56, ipv4: 8, url: 1.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain89757.x.ggAPTTrail
Domainairjaldi.onlineAPTTrail
Domainapplestatic.comAPTTrail
Domainbailianlan.c.dwyu.comAPTTrail
Domaincattree.1x.bizAPTTrail
Domaincharlesbrain.shop.coAPTTrail
Domainclbest.greenglassint.netAPTTrail
Domaindalailamatrustindia.ddns.netAPTTrail
Domainduojee.infoAPTTrail
Domainfidk.rkntils.dnset.comAPTTrail
Domainfireequipment.website.orgAPTTrail
Domainflex-jobs.inAPTTrail
Domainfootballworldcup.website.orgAPTTrail
Domainfrankwhales.shop.coAPTTrail
Domainfreetibet.inAPTTrail
Domaingmailcom.twAPTTrail
Domaingoodwell.all.co.ukAPTTrail
Domainhavefuns.rkntils.10dig.netAPTTrail
Domainhi21222325.x.ggAPTTrail
Domainindiatrustdalailama.comAPTTrail
Domainjeepvihecle.shop.coAPTTrail
Domainjobflex.inAPTTrail
Domainjohnnees.rkntils.10dig.netAPTTrail
Domainkillmannets.0fees.netAPTTrail
Domainkinkeechow.shop.coAPTTrail
Domainkittyshop.kilu.orgAPTTrail
Domainlucysmith.0fees.netAPTTrail
Domainmaritimemaster.kilu.orgAPTTrail
Domainmasterchoice.shop.coAPTTrail
Domainmondaynews.tkAPTTrail

Referencias

Diamond Model

Adversary
exilerat
Ver perfil →
Victim
APTTrail: exilerat indicators and references
India
Capability
Ioc
Infrastructure
89757.x.gg
airjaldi.online
applestatic.com
bailianlan.c.dwyu.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 89757.x.gg APTTrail VT OffSec SOCRadar
Domain airjaldi.online APTTrail VT OffSec SOCRadar
Domain applestatic.com APTTrail VT OffSec SOCRadar
Domain bailianlan.c.dwyu.com APTTrail VT OffSec SOCRadar
Domain cattree.1x.biz APTTrail VT OffSec SOCRadar
Domain charlesbrain.shop.co APTTrail VT OffSec SOCRadar
Domain clbest.greenglassint.net APTTrail VT OffSec SOCRadar
Domain dalailamatrustindia.ddns.net APTTrail VT OffSec SOCRadar
Domain duojee.info APTTrail VT OffSec SOCRadar
Domain fidk.rkntils.dnset.com APTTrail VT OffSec SOCRadar
Domain fireequipment.website.org APTTrail VT OffSec SOCRadar
Domain flex-jobs.in APTTrail VT OffSec SOCRadar
Domain footballworldcup.website.org APTTrail VT OffSec SOCRadar
Domain frankwhales.shop.co APTTrail VT OffSec SOCRadar
Domain freetibet.in APTTrail VT OffSec SOCRadar
Domain gmailcom.tw APTTrail VT OffSec SOCRadar
Domain goodwell.all.co.uk APTTrail VT OffSec SOCRadar
Domain havefuns.rkntils.10dig.net APTTrail VT OffSec SOCRadar
Domain hi21222325.x.gg APTTrail VT OffSec SOCRadar
Domain indiatrustdalailama.com APTTrail VT OffSec SOCRadar
Domain jeepvihecle.shop.co APTTrail VT OffSec SOCRadar
Domain jobflex.in APTTrail VT OffSec SOCRadar
Domain johnnees.rkntils.10dig.net APTTrail VT OffSec SOCRadar
Domain killmannets.0fees.net APTTrail VT OffSec SOCRadar
Domain kinkeechow.shop.co APTTrail VT OffSec SOCRadar
Domain kittyshop.kilu.org APTTrail VT OffSec SOCRadar
Domain lucysmith.0fees.net APTTrail VT OffSec SOCRadar
Domain maritimemaster.kilu.org APTTrail VT OffSec SOCRadar
Domain masterchoice.shop.co APTTrail VT OffSec SOCRadar
Domain mondaynews.tk APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor exilerat en el blog → Ver exilerat en IntelTracker → URL IntelTracker: www.trendmicro.com→ URL IntelTracker: blog.talosintelligence.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: twitter.com→ URL IntelTracker: www.proofpoint.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.trendmicro.com→ Fuente OSINT: blog.talosintelligence.com→ Fuente OSINT: otx.alienvault.com→ Fuente OSINT: otx.alienvault.com → Buscar exilerat en APTTrail → Repositorio APTTrail → Mas incidentes en India → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen