jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: smokedham indicators and references

APTTrail: smokedham indicators and references

Ioc 2 min lectura smokedham
Fecha
18 Jun 2026
Actor
smokedham
Tipo
Ioc
Pais
Unknown
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
smokedhamActor
UnknownPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a smokedham. Aliases observados: smokedham. Conteo por tipo: domain: 1832.

Key Points

  • https://app.any.run/tasks/a9391be5-4e71-4a95-9072-477f8afd906f/
  • https://gist.github.com/drb-ra/179e8e9beca45bc10feba97cf8c5c7b1
  • https://github.com/cert-orangecyberdefense/cti/blob/main/smokedham/iocs
  • https://medium.com/trac-labs/who-ordered-the-smokedham-backdoor-delicacies-in-the-wild-87f51e2e5bd2
  • https://research.cert.orangecyberdefense.com/smokedham/smoking_out_an_affiliate.pdf

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a smokedham. Aliases observados: smokedham. Conteo por tipo: domain: 1832.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domain08f0.proxy-edge-c5f.workers.devAPTTrail
Domain12.workbencn.comAPTTrail
Domain178.159.43.206.sslip.ioAPTTrail
Domain1r.rvtoolsed.comAPTTrail
Domain1s.rvtoolsai.comAPTTrail
Domain1v.rvtoollsa.comAPTTrail
Domain1v.rvtootsad.comAPTTrail
Domain1yeralti.comAPTTrail
Domain20.rvtoolsaq.comAPTTrail
Domain20.rvtoolse.infoAPTTrail
Domain20.rvtoolsme.comAPTTrail
Domain21.rvtoolsen.comAPTTrail
Domain22.rvtoolsik.comAPTTrail
Domain24.rvtoolis.infoAPTTrail
Domain24.rvtoolsgo.comAPTTrail
Domain27.rvtoolsax.comAPTTrail
Domain2a.rvtoolso.infoAPTTrail
Domain2b.rvtoolsit.comAPTTrail
Domain2j.rvtoolsup.comAPTTrail
Domain2w.s3abrowser.comAPTTrail
Domain3g.s3brovvser.comAPTTrail
Domain3p.workbenche.comAPTTrail
Domain40.workbencse.comAPTTrail
Domain45perhour.orgAPTTrail
Domain4l.rvtoolslab.comAPTTrail
Domain4t.rvtoolsacs.comAPTTrail
Domain54.rvtoolsone.comAPTTrail
Domain58.rvtoolsmax.comAPTTrail
Domain5b.rvtoolsbox.comAPTTrail
Domain5n.rvtoolsrun.comAPTTrail

Referencias

Diamond Model

Adversary
smokedham
Ver perfil →
Victim
APTTrail: smokedham indicators and references
Capability
Ioc
Infrastructure
08f0.proxy-edge-c5f.workers.dev
12.workbencn.com
178.159.43.206.sslip.io
1r.rvtoolsed.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain 08f0.proxy-edge-c5f.workers.dev APTTrail VT OffSec SOCRadar
Domain 12.workbencn.com APTTrail VT OffSec SOCRadar
Domain 178.159.43.206.sslip.io APTTrail VT OffSec SOCRadar
Domain 1r.rvtoolsed.com APTTrail VT OffSec SOCRadar
Domain 1s.rvtoolsai.com APTTrail VT OffSec SOCRadar
Domain 1v.rvtoollsa.com APTTrail VT OffSec SOCRadar
Domain 1v.rvtootsad.com APTTrail VT OffSec SOCRadar
Domain 1yeralti.com APTTrail VT OffSec SOCRadar
Domain 20.rvtoolsaq.com APTTrail VT OffSec SOCRadar
Domain 20.rvtoolse.info APTTrail VT OffSec SOCRadar
Domain 20.rvtoolsme.com APTTrail VT OffSec SOCRadar
Domain 21.rvtoolsen.com APTTrail VT OffSec SOCRadar
Domain 22.rvtoolsik.com APTTrail VT OffSec SOCRadar
Domain 24.rvtoolis.info APTTrail VT OffSec SOCRadar
Domain 24.rvtoolsgo.com APTTrail VT OffSec SOCRadar
Domain 27.rvtoolsax.com APTTrail VT OffSec SOCRadar
Domain 2a.rvtoolso.info APTTrail VT OffSec SOCRadar
Domain 2b.rvtoolsit.com APTTrail VT OffSec SOCRadar
Domain 2j.rvtoolsup.com APTTrail VT OffSec SOCRadar
Domain 2w.s3abrowser.com APTTrail VT OffSec SOCRadar
Domain 3g.s3brovvser.com APTTrail VT OffSec SOCRadar
Domain 3p.workbenche.com APTTrail VT OffSec SOCRadar
Domain 40.workbencse.com APTTrail VT OffSec SOCRadar
Domain 45perhour.org APTTrail VT OffSec SOCRadar
Domain 4l.rvtoolslab.com APTTrail VT OffSec SOCRadar
Domain 4t.rvtoolsacs.com APTTrail VT OffSec SOCRadar
Domain 54.rvtoolsone.com APTTrail VT OffSec SOCRadar
Domain 58.rvtoolsmax.com APTTrail VT OffSec SOCRadar
Domain 5b.rvtoolsbox.com APTTrail VT OffSec SOCRadar
Domain 5n.rvtoolsrun.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor smokedham en el blog → Ver smokedham en IntelTracker → URL IntelTracker: app.any.run→ URL IntelTracker: gist.github.com→ URL IntelTracker: github.com→ URL IntelTracker: medium.com→ URL IntelTracker: research.cert.orangecyberdefense.com→ URL IntelTracker: www.virustotal.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: app.any.run→ Fuente OSINT: gist.github.com→ Fuente OSINT: github.com→ Fuente OSINT: medium.com → Buscar smokedham en APTTrail → Repositorio APTTrail → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen