DomainMediumSignal 35/100
account-paypal-modify.com
First Seen
Jan 11, 2022
Last Seen
Jun 4, 2026
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
8 reports35% confidence
8
Source reports
35%
Confidence score
Category tags
abuseabuse reportaccount compromiseaccount discoveryaccount profilingaccount takeoveractive scananti-phishingbad reputationbecbotnetbotnet activitybrand abusebrand impersonationbrand_impersonationbrute forcebusiness email compromisebusiness_email_compromisecommand and controlcommunication protocolcommunity managementcontent sharingcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftcredential_theftcyber threat intelligencedata exfiltrationdata store exposuredeceptive marketingdigital platformsdistributed attacksemail-based attackexploitation activityfinancefraudfraudulent domainfraudulent websitehttp scannerhttpsidentity & access exploitationindicatorindicators of compromiseinformation theftinfrastructure acquisitionreconnaissanceingress tool transferinitial accessinjection activityiot securitylink injectionlink manipulationmalicious attachmentmalicious domainmalicious downloadmalicious linkmalicious linksmalicious softwaremalicious urlsmalicious_attachmentmalwaremalware attachmentmalware deliverymalware distributionmalware hostingnetworkphishingphishing activityphishing attackphishing campaignphishing domain detectionphishing kitphishing-databasephishing_urlprocess injectionransomwareresearchedrogue domainscams & fraudsecurity advisorysecurity awarenesssecurity operationssmssmtpsocial analyticssocial engineeringsocial engineering attacksocial mediasocial media marketingsocial media securitysocial networkingspamspam campaignsupply chain attackt1036t1055t1056t1071t1071.001t1078t1105t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1552t1552.001t1565t1566t1566.001t1566.002t1566.003t1566.004t1567t1567.001t1583t1583.001t1587.001t1588t1588.002t1590.001t1598t1598.003threat actorthreat indicatorthreat intelligencetor nodetyposquattingunknown threat actoruser engagementweb securityweb trafficwebsite phishing
Activity Timeline
Jun 4Jun 4
Threat Activity Heatmap
· Peak: 2026-06-04LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
8
Reports
First seenJan 11, 2022
Last seenJun 4, 2026
VirusTotal
Not checked
WHOIS
- registrar
- NameSilo, LLC
- description
- LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
- domain rank
- -1
- raw
- Creation Date: 2022-01-10T05:41:56Z DNSSEC: unsigned Domain Name: ACCOUNT-PAYPAL-MODIFY.COM Domain Status: clientHold https://icann.org/epp#clientHold Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: redemptionPeriod https://icann.org/epp#redemptionPeriod Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.4805240066 Registrar IANA ID: 1479 Registrar URL: http://www.namesilo.com Registrar WHOIS Server: whois.namesilo.com Registrar: NameSilo, LLC Registry Domain ID: 2667182870_DOMAIN_COM-VRSN Registry Expiry Date: 2023-01-10T05:41:56Z Updated Date: 2023-02-12T20:15:42Z
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 years ago · Last seen 8 days ago
Appeared in 8 threat reports