Trusted Design

Iranian APT Infrastructure in Focus: Mapping State-Aligned Clusters During Geopolitical Escalation

概要

The analysis examines Iranian state-aligned threat actors and their infrastructure patterns during heightened geopolitical tensions. It focuses on mapping network infrastructure, ASN patterns, TLS fingerprints, and hosting clusters associated with various Iranian APT groups. The report highlights the importance of proactive infrastructure monitoring to detect and disrupt potential cyber operations. Key findings include the identification of previously unreported hosts, domains, and servers linked to Iranian operations, as well as insights into the tactics used by groups like MuddyWater and Dark Scepter. The article emphasizes the value of infrastructure intelligence in early threat detection and provides recommendations for organizations to monitor and defend against these threats.

Created: 2026-03-05

Indicators

• domain - anythingshere.shop -
• IPv4 - 209.74.87.100 -
• domain - musiclivetrack.website -
• domain - justweb.click -
• FileHash-SHA1 - 324918c73b985875d5f974da3471f2a0a4874687 -
• domain - footballfans.asia -
• domain - stone110.store -
• domain - lecturegenieltd.pro -
• FileHash-MD5 - 2533307ec1ef8b0611c8896e1460b076 -
• domain - girlsbags.shop -
• FileHash-SHA256 - e25892603c42e34bd7ba0d8ea73be600d898cadc290e3417a82c04d6281b743b -
• domain - ntcx.pro -
• IPv4 - 185.236.25.119 -
• domain - cside.site -
• domain - web14.info -
• IPv4 - 157.20.182.49 -
• domain - retseptik.info -
• IPv4 - 92.243.65.243 -
• domain - menclub.it -

類似Pulses

類似するPulseは見つかりませんでした。

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る