jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: goreshell indicators and references

APTTrail: goreshell indicators and references

Ioc 1 min lectura goreshell
Fecha
18 Jun 2026
Actor
goreshell
Tipo
Ioc
Pais
United States
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

13IOCs
0TTPs
goreshellActor
United StatesPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a goreshell. Aliases observados: goreshell. Conteo por tipo: domain: 11, ipv4: 1.

Key Points

  • https://www.sentinelone.com/labs/follow-the-smoke-china-nexus-threat-actors-hammer-at-the-doors-of-top-tier-targets/
  • https://x.com/milenkowski/status/1932038909455684056

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a goreshell. Aliases observados: goreshell. Conteo por tipo: domain: 11, ipv4: 1.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainccna.organiccrap.comAPTTrail
Domaincloud.trendav.coAPTTrail
Domaindownloads.trendav.vipAPTTrail
Domainepp.navy.ddns.infoAPTTrail
Domainmail.ccna.organiccrap.comAPTTrail
Domainmail.secmailbox.usAPTTrail
Domainnavy.ddns.infoAPTTrail
Domainsecmailbox.usAPTTrail
Domainsentinelxdr.usAPTTrail
Domaintatacom.duckdns.orgAPTTrail
Domaintrendav.vipAPTTrail
IP45.13.199.209:443APTTrail

Referencias

Diamond Model

Adversary
goreshell
Ver perfil →
Victim
APTTrail: goreshell indicators and references
United States
Capability
Ioc
Infrastructure
ccna.organiccrap.com
cloud.trendav.co
downloads.trendav.vip
epp.navy.ddns.info

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain ccna.organiccrap.com APTTrail VT OffSec SOCRadar
Domain cloud.trendav.co APTTrail VT OffSec SOCRadar
Domain downloads.trendav.vip APTTrail VT OffSec SOCRadar
Domain epp.navy.ddns.info APTTrail VT OffSec SOCRadar
Domain mail.ccna.organiccrap.com APTTrail VT OffSec SOCRadar
Domain mail.secmailbox.us APTTrail VT OffSec SOCRadar
Domain navy.ddns.info APTTrail VT OffSec SOCRadar
Domain secmailbox.us APTTrail VT OffSec SOCRadar
Domain sentinelxdr.us APTTrail VT OffSec SOCRadar
Domain tatacom.duckdns.org APTTrail VT OffSec SOCRadar
Domain trendav.vip APTTrail VT OffSec SOCRadar
IP 45.13.199.209:443 APTTrail VT OffSec SOCRadar
Domain www.sentinelone.com Extraido del contenido VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor goreshell en el blog → Ver goreshell en IntelTracker → URL IntelTracker: www.sentinelone.com→ URL IntelTracker: x.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.sentinelone.com→ Fuente OSINT: x.com → Buscar goreshell en APTTrail → Repositorio APTTrail → Mas incidentes en United States → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen