jordiserrano.meClickFixKAIROSIntelTracker
Panel de inteligencia » APTTrail: whiteelephant indicators and references

APTTrail: whiteelephant indicators and references

Ioc 1 min lectura whiteelephant
Fecha
18 Jun 2026
Actor
whiteelephant
Tipo
Ioc
Pais
India
Sector
-
Confianza
high
100
Prioridad analitica
Alta

Basado en actor, pais, IOCs, TTPs, filtracion y calidad de contexto.

30IOCs
0TTPs
whiteelephantActor
IndiaPais
Executive Summary
APTTrail mantiene indicadores publicos asociados a whiteelephant. Aliases observados: whiteelephant. Conteo por tipo: domain: 73, ipv4: 16, url: 7.

Key Points

  • https://www.sentinelone.com/labs/elephant-hunting-inside-an-indian-hack-for-hire-group/
  • https://www.virustotal.com/gui/file/088038c03cc1ed4a045f54c7e2bc051bc4f334a10db7f17e66db72d3e412c365/detection
  • https://www.virustotal.com/gui/file/66a58da1d568fbca46462acbbce75c21b2d8f4735da5c34824feae6f8b525411/detection
  • https://www.virustotal.com/gui/file/cd661a71d7f7e7076bd90af46ca5b3202b5a4af1067ac9ddff8dfcb8e6987426/detection
  • https://www.virustotal.com/gui/file/d70de8d8263f54cf9dea72638e664556a6684b5f518bfb66f45271898653ad5c/detection

Resumen APTTrail

APTTrail mantiene indicadores publicos asociados a whiteelephant. Aliases observados: whiteelephant. Conteo por tipo: domain: 73, ipv4: 16, url: 7.

Indicadores de Compromiso (IOCs)

TipoValorContexto
Domainabdupdates.comAPTTrail
Domainalr3ady.netAPTTrail
Domainantivirusreviewratings.comAPTTrail
Domainauthorisedsecurehost.comAPTTrail
Domainbksrv3r001.comAPTTrail
Domainbluecreams.comAPTTrail
Domainbookshopmarket.comAPTTrail
Domainbrandsons.netAPTTrail
Domainbraninfall.netAPTTrail
Domainc00lh0sting.comAPTTrail
Domainc0ttenc0unty.comAPTTrail
Domaincr3ator01.netAPTTrail
Domaincrowcatcher.comAPTTrail
Domaincrvhostia.netAPTTrail
Domaincurrentnewsstore.comAPTTrail
Domaincustomauthentication.comAPTTrail
Domaindevinmartin.netAPTTrail
Domaindirectsupp0rt.comAPTTrail
Domaindivinepower.infoAPTTrail
Domaindraganheart.comAPTTrail
Domaineasyhost-ing.comAPTTrail
Domaineasyslidesharing.netAPTTrail
Domainf00dlover.infoAPTTrail
Domainfiletrusty.netAPTTrail
Domainfollow-ship.comAPTTrail
Domainforest-fire.netAPTTrail
Domainfoxypredators.comAPTTrail
Domainfreensecurehost.comAPTTrail
Domainfreesecurehostings.comAPTTrail
Domainfreewebdomainhost.comAPTTrail

Referencias

Diamond Model

Adversary
whiteelephant
Ver perfil →
Victim
APTTrail: whiteelephant indicators and references
India
Capability
Ioc
Infrastructure
abdupdates.com
alr3ady.net
antivirusreviewratings.com
authorisedsecurehost.com

Indicadores de Compromiso (IOCs)

TipoValorContextoOSINT
Domain abdupdates.com APTTrail VT OffSec SOCRadar
Domain alr3ady.net APTTrail VT OffSec SOCRadar
Domain antivirusreviewratings.com APTTrail VT OffSec SOCRadar
Domain authorisedsecurehost.com APTTrail VT OffSec SOCRadar
Domain bksrv3r001.com APTTrail VT OffSec SOCRadar
Domain bluecreams.com APTTrail VT OffSec SOCRadar
Domain bookshopmarket.com APTTrail VT OffSec SOCRadar
Domain brandsons.net APTTrail VT OffSec SOCRadar
Domain braninfall.net APTTrail VT OffSec SOCRadar
Domain c00lh0sting.com APTTrail VT OffSec SOCRadar
Domain c0ttenc0unty.com APTTrail VT OffSec SOCRadar
Domain cr3ator01.net APTTrail VT OffSec SOCRadar
Domain crowcatcher.com APTTrail VT OffSec SOCRadar
Domain crvhostia.net APTTrail VT OffSec SOCRadar
Domain currentnewsstore.com APTTrail VT OffSec SOCRadar
Domain customauthentication.com APTTrail VT OffSec SOCRadar
Domain devinmartin.net APTTrail VT OffSec SOCRadar
Domain directsupp0rt.com APTTrail VT OffSec SOCRadar
Domain divinepower.info APTTrail VT OffSec SOCRadar
Domain draganheart.com APTTrail VT OffSec SOCRadar
Domain easyhost-ing.com APTTrail VT OffSec SOCRadar
Domain easyslidesharing.net APTTrail VT OffSec SOCRadar
Domain f00dlover.info APTTrail VT OffSec SOCRadar
Domain filetrusty.net APTTrail VT OffSec SOCRadar
Domain follow-ship.com APTTrail VT OffSec SOCRadar
Domain forest-fire.net APTTrail VT OffSec SOCRadar
Domain foxypredators.com APTTrail VT OffSec SOCRadar
Domain freensecurehost.com APTTrail VT OffSec SOCRadar
Domain freesecurehostings.com APTTrail VT OffSec SOCRadar
Domain freewebdomainhost.com APTTrail VT OffSec SOCRadar

Referencias y enlaces

→ Perfil del actor whiteelephant en el blog → Ver whiteelephant en IntelTracker → URL IntelTracker: www.sentinelone.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com→ URL IntelTracker: www.virustotal.com → Fuente OSINT: github.com→ Fuente OSINT: raw.githubusercontent.com→ Fuente OSINT: www.sentinelone.com→ Fuente OSINT: www.virustotal.com→ Fuente OSINT: www.virustotal.com→ Fuente OSINT: www.virustotal.com → Buscar whiteelephant en APTTrail → Repositorio APTTrail → Mas incidentes en India → Buscar en Google News → Analizar en VirusTotal → Feed RSS del blog
← Volver al panel de inteligencia

Incidentes recientes

Suǭrez&Clavera18 Jun 2026 · gunra MHE9 Logstica Ltda18 Jun 2026 · gunra Misericrdia de Santo Tirso18 Jun 2026 · qilin Direǜo Estacionamentos S.A.18 Jun 2026 · deadlock Br Cargolift Polska Sp. z o.o.18 Jun 2026 · deadlock www.someco.com18 Jun 2026 · lynx www.eastersealsia.org18 Jun 2026 · lynx Vera Chimie Management18 Jun 2026 · the-gentlemen