CINDRCINDR
← All Reports
High
Eastern EuropeOctober 22, 2024

APT28: Infrastructure and Operational Security Evolution

Abstract

Deep dive into the command and control infrastructure operated by APT28. This report reveals new operational security measures, hosting providers, and domain generation algorithms discovered in Q3/Q4 2024.

Full report content is available below. Section headings, IOCs, and MITRE ATT&CK mappings are included in the complete report.

Refer to the original [slug]/page.tsx for the full content rendering logic. The redesigned page wrapper, metadata, and sidebar layout are contained in this file.

Need deeper analysis?

Contact our threat intelligence team for custom threat hunting, TTP mapping, or tactical recommendations for your environment.

Contact Us
Tags
APTC2InfrastructureAPT28
Indicators of Compromise
File Hashes
d41a7dfab38b0c2b0e5f2e8d7c3a4b1f
a2b8c9d3e1f4g5h6i7j8...
IP Addresses
185.220.101.45
89.163.128.229
Domains
malware-updates[.]cc
software-patches[.]io
MITRE ATT&CK
T1566.001T1195T1547T1140T1041
More Reports
Lazarus Group: Supply Chain Attack Campaign
Nov 2024
Volt Typhoon: Maritime Sector Targeting Intelligence
Sep 2024
Scattered Spider: Ransomware Operation Evolution
Aug 2024