← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
The APT35 Dump Episode 4: Leaking The Backstage Pass To An Iranian Intelligence Operation
APT35, also known as Charming Kitten, has long occupied an odd niche in the hierarchy of Iranian cyber operations. They’re the loud ones, constantly deploying new credential-harvesting pages dressed in Western university or defense-contractor branding, yet always recycling the same code and lures. For years, analysts dismissed them as a politically motivated collective within the Revolutionary Guard’s orbit, dangerous mainly to journalists and dissidents, but rarely haunting MITRE’s nightmares
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| domain | bbmovements.com | — | 2025-12-18 | |
| domain | cavinet.org | — | 2025-12-18 | |
| domain | dreamy-jobs.com | — | 2025-12-18 | |
| domain | israel-talent.com | — | 2025-12-18 | |
| domain | israel-talent.xyz | — | 2025-12-18 | |
| domain | kanplus.org | — | 2025-12-18 | |
| domain | secnetdc.com | — | 2025-12-18 | |
| domain | tecret.com | — | 2025-12-18 | |
| domain | termite.nu | — | 2025-12-18 | |
| domain | wazayif-halima.org | — | 2025-12-18 | |
| domain | moses-staff.io | — | 2025-12-18 | |
| domain | moses-staff.se | — | 2025-12-18 | |
| b.laws32@proton.me | — | 2025-12-18 | ||
| bashiriansul@proton.me | — | 2025-12-18 | ||
| gdavies007@proton.me | — | 2025-12-18 | ||
| jhjbmuugtfftdd@proton.me | — | 2025-12-18 | ||
| lolita259@proton.me | — | 2025-12-18 | ||
| mekhaeelkalashnikova@proton.me | — | 2025-12-18 | ||
| rona_yanga@proton.me | — | 2025-12-18 | ||
| sanjilankopylova@proton.me | — | 2025-12-18 | ||
| shirley7070@proton.me | — | 2025-12-18 |