IOC Radar
DomainMediumSignal 91/100

05webus.meet.05uk.us

First Seen
Apr 14, 2026
Last Seen
Apr 30, 2026
Apr 14
First Seen
65d ago
Apr 30
Last Seen
49d ago
7
Reports
source reports
91%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
91%
Signal Score
91 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

14 techniques

Feed Intelligence Summary

7 reports91% confidence
7
Source reports
91%
Confidence score
Category tags
abuseactive scanalienvault_ransomwarebad reputationbluenoroffc++c2 servercabbagecabbage ratcageychameleoncommand & controlcontactcopycryptocurrencydata exfiltrationdata store exposuredomainsdownloaderelfexecutable fileexploitation activityfake meetinghasheshelloindicatorinjection activityipv4lazaruslinuxmachomalicious softwaremalwaremanual-collectionmedium-risknetworkperlpowershellprocess injectionransomwareremote accessresearchedservicesnippett1008t1055t1056t1059t1071.001t1102t1123t1125t1176t1486t1547t1557t1565t1566terminatesthreat actortor nodetype osintvalidinvbsvbs payloadvoicezoom

Activity Timeline

1 total obs
Apr 30Apr 30

Threat Activity Heatmap

· Peak: 2026-04-30
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
91
SIGNAL
Signal Score
91%
Confidence
7
Reports
First seenApr 14, 2026
Last seenApr 30, 2026

VirusTotal

Not checked

WHOIS

description
We expanded our research into the recent UNC1069 campaign, which targets individuals by luring them into fraudulent meetings hosted by fake companies. Our analysis focuses on the diverse attack chains employed by the threat actors, as well as the scale and sophistication of their supporting infrastructure.
raw
Administrative city: San Mateo Administrative country: United States Administrative state: California Create date: 2026-03-12 00:00:00 Domain name: 05uk.us Domain registrar id: 472.0 Domain registrar url: whois.dynadot.com Expiry date: 2027-03-12 00:00:00 Name server 1: ns1.dyna-ns.net Name server 2: ns2.dyna-ns.net Query time: 2026-03-21 06:35:08 Registrant address: be16f4675e1da7d6 Registrant city: 4c1e8923fbe04777 Registrant country: United States Registrant email: [email protected] Registrant name: 23a56e50f81dbe8f Registrant phone: 0e6269619884dcfa Registrant state: b30dc70b6b4b3fee Registrant zip: 60f846185b8b568d Technical city: San Mateo Technical country: United States Technical state: California Update date: 2026-03-17 00:00:00

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 7 threat reports