DomainHighVerifiedSignal 35/100
acceuil-renouv.fr
Location
FranceFirst Seen
Aug 15, 2022
Last Seen
Jun 7, 2026
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
6 reports35% confidence
6
Source reports
35%
Confidence score
Category tags
account_takeoverbecbec attackbotnetbotnet activitybrand impersonationbrute forcecode issuescommand and controlcompromised credentialscredential harvestingcredential phishingcredential stuffingcredential theftcredential-harvestingcredential_harvestingcyber threat intelligencedata accessdata copyingdata exfiltrationdata store exposuredata transferdata_exfiltration_attemptdgadigital signaturedistributed attacksemail-based attackemail-spoofingeu cyber policieseuropeexploitation activityfake websitefinancefooterfrancefraudfraud domainsfraudulent websitesgithubidentity & access exploitationindicatorindicators of compromiseinitial accessinjection activityiocjumplink injectionmalicious attachmentmalicious domainmalicious linkmalicious linksmalicious softwaremalicious-urlmalwaremalware deliverymalware distributionmalware distribution domainsmalware domainsmalware phishingmalware signingmobile threatnetworkopenpayload deliveryphishingphishing activityphishing attackphishing campaignphishing domainsphishing indicatorsphishing-databaseprocess injectionpullransomwarered flag domainsregional securityresearchedscams & fraudsecurity operationssms phishingsocial engineeringsoftware integritystarstrongsuspicious-domaint1005t1030t1055t1071t1071.001t1078t1105t1189t1192t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1534t1538t1539t1552t1554.001t1554.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1583t1583.001t1588t1591t1598t1598.003threat actorthreat intelligencethreat-intelligence-feedtor nodeunknown threat actorviewweb securitywebsite phishing
Activity Timeline
Jun 7Jun 7
Threat Activity Heatmap
· Peak: 2026-06-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **acceuil-renouv.fr**, originating from France, has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats. First observed on August
Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
6
Reports
First seenAug 15, 2022
Last seenJun 7, 2026
Verified IOC
VirusTotal
Not checked
WHOIS
- registrar
- IONOS SE
- description
- LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
- domain rank
- -1
- raw
- >>> WHOIS request date: 2023-09-08T23:44:53.692058Z <<< Expiry Date: 2024-08-13T01:09:35Z changed: 2023-09-08T16:46:21.283644Z country: DE country: FR created: 2022-08-13T01:09:35Z domain: acceuil-renouv.fr e-mail: [email protected] e-mail: [email protected] e-mail: [email protected] eligstatus: not identified eppstatus: active eppstatus: associated last-update: 2023-08-13T01:14:07.203746Z nic-hdl: S292841-FRNIC nic-hdl: S292842-FRNIC nic-hdl: UIS153-FRNIC nserver: ns1038.ui-dns.com nserver: ns1086.ui-dns.biz nserver: ns1099.ui-dns.de nserver: ns1118.ui-dns.org reachstatus: not identified registered: 2001-01-15T00:00:00Z registrar: IONOS SE source: FRNIC status: ACTIVE status: autoRenewPeriod type: ORGANIZATION
- references
- https://threatintel.cybsec.fr/2023IOCs4_cybsec.txt, https://dl.red.flag.domains/red.flag.domains.txt, https://www.trendmicro.com/en_us/research/23/i/cybercriminals-exploit-the-moroccan-tragedy-in-new-scam-campaign.html, https://github.com/infobloxopen/threat-intelligence/blob/main/cta_indicators/ameli_cta_20221118_iocs.csv
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 3 years ago · Last seen 7 days ago
Appeared in 6 threat reports