jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: famoussparrow indicators and references

APTTrail: famoussparrow indicators and references

Ioc 1 min lectura famoussparrow
Fecha
18 Jun 2026
Actor
famoussparrow
Tipo
Ioc
Pais
China
Sector
Tech
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
famoussparrowActor
ChinaPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a famoussparrow. Aliases observados: famoussparrow, keyboy, pirate panda, tropic trooper, usbferry. Conteo por tipo: domain: 90, ipv4: 27, url: 2.

Key Points

  • https://citizenlab.ca/2016/11/parliament-keyboy/
  • https://documents.trendmicro.com/assets/Tech-Brief-Tropic-Trooper-s-Back-USBferry-Attack-Targets-Air-gapped-Environments.pdf
  • https://github.com/ti-research-io/ti/blob/main/ioc_extender/ET_APT-FamousSparrow.json
  • https://otx.alienvault.com/pulse/5ebd510bcf2617c25c082fb3
  • https://otx.alienvault.com/pulse/614d9d97468b5d59e66efeec

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a famoussparrow. Aliases observados: famoussparrow, keyboy, pirate panda, tropic trooper, usbferry. Conteo por tipo: domain: 90, ipv4: 27, url: 2.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainabout.jkub.comAPTTrail
Domainadobehomework.comAPTTrail
Domainak.buycheap.cnAPTTrail
Domainamazoncdns.comAPTTrail
Domainap.missmichiko.comAPTTrail
Domainapi.cnicchina.comAPTTrail
Domainathenatechlabs.comAPTTrail
Domainauth.boxlibraries.comAPTTrail
Domainawsdns-531.comAPTTrail
Domainbackus.myftp.nameAPTTrail
Domainblog.techmersion.comAPTTrail
Domainbroadmediacloud.comAPTTrail
Domainbuycheap.cnAPTTrail
Domainc11r.awsdns-531.comAPTTrail
Domaincache10.newsfreecloud.comAPTTrail
Domaincachecloud.cloudflaresrv.comAPTTrail
Domaincas04.awsdns-531.comAPTTrail
Domaincdglobalclouds.comAPTTrail
Domaincdn.kkxx888666.comAPTTrail
Domaincdn101.cloudflaresrv.comAPTTrail
Domaincdn181.awsdns-531.comAPTTrail
Domaincloudflaresrv.comAPTTrail
Domaincloudshappen.comAPTTrail
Domaincloudsrv.cloudfrontsrv.comAPTTrail
Domaincnicchina.comAPTTrail
Domaincredits.offices-analytics.comAPTTrail
Domaindbacloudsupport.comAPTTrail
Domainde.huseinhbz.clickAPTTrail
Domaindpponline.trickip.orgAPTTrail
Domaineleven.mypop3.orgAPTTrail

Referencias

Diamond Model

Adversary
famoussparrow
Ver perfil →
Victim
APTTrail: famoussparrow indicators and references
China
Capability
Ioc
Infrastructure
about.jkub.com
adobehomework.com
ak.buycheap.cn
amazoncdns.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain about.jkub.com APTTrail VT OffSec SOCRadar
Domain adobehomework.com APTTrail VT OffSec SOCRadar
Domain ak.buycheap.cn APTTrail VT OffSec SOCRadar
Domain amazoncdns.com APTTrail VT OffSec SOCRadar
Domain ap.missmichiko.com APTTrail VT OffSec SOCRadar
Domain api.cnicchina.com APTTrail VT OffSec SOCRadar
Domain athenatechlabs.com APTTrail VT OffSec SOCRadar
Domain auth.boxlibraries.com APTTrail VT OffSec SOCRadar
Domain awsdns-531.com APTTrail VT OffSec SOCRadar
Domain backus.myftp.name APTTrail VT OffSec SOCRadar
Domain blog.techmersion.com APTTrail VT OffSec SOCRadar
Domain broadmediacloud.com APTTrail VT OffSec SOCRadar
Domain buycheap.cn APTTrail VT OffSec SOCRadar
Domain c11r.awsdns-531.com APTTrail VT OffSec SOCRadar
Domain cache10.newsfreecloud.com APTTrail VT OffSec SOCRadar
Domain cachecloud.cloudflaresrv.com APTTrail VT OffSec SOCRadar
Domain cas04.awsdns-531.com APTTrail VT OffSec SOCRadar
Domain cdglobalclouds.com APTTrail VT OffSec SOCRadar
Domain cdn.kkxx888666.com APTTrail VT OffSec SOCRadar
Domain cdn101.cloudflaresrv.com APTTrail VT OffSec SOCRadar
Domain cdn181.awsdns-531.com APTTrail VT OffSec SOCRadar
Domain cloudflaresrv.com APTTrail VT OffSec SOCRadar
Domain cloudshappen.com APTTrail VT OffSec SOCRadar
Domain cloudsrv.cloudfrontsrv.com APTTrail VT OffSec SOCRadar
Domain cnicchina.com APTTrail VT OffSec SOCRadar
Domain credits.offices-analytics.com APTTrail VT OffSec SOCRadar
Domain dbacloudsupport.com APTTrail VT OffSec SOCRadar
Domain de.huseinhbz.click APTTrail VT OffSec SOCRadar
Domain dpponline.trickip.org APTTrail VT OffSec SOCRadar
Domain eleven.mypop3.org APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor famoussparrow en el blog → Ver famoussparrow en IntelTracker → URL IntelTracker: citizenlab.ca→ URL IntelTracker: documents.trendmicro.com→ URL IntelTracker: github.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: otx.alienvault.com→ URL IntelTracker: securelist.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: citizenlab.ca→ Fuente OSINT: documents.trendmicro.com→ Fuente OSINT: github.com→ Fuente OSINT: otx.alienvault.com → Buscar famoussparrow en APTTrail → Repositorio APTTrail → Mas incidentes en China → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen