IOC Radar
DomainHighVerifiedSignal 55/100

ad-noise.net

Location
AustraliaAustralia
First Seen
Apr 17, 2021
Last Seen
May 1, 2026
Apr 17
First Seen
1890d ago
May 1
Last Seen
49d ago
5
Reports
source reports
55%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
55%
Signal Score
55 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Feed Intelligence Summary

5 reports55% confidence
5
Source reports
55%
Confidence score
Category tags
aaaaabuseacceptactive scanadapter driveraddressaddress domainadminalienvault_ransomwareall octoseekanti-virus evasionapple as8075attorney jamesaustraliabad reputationbodybotnetbotnet activitybrute forceca issuerscertificate statuscivil societyclickcnamecobalt strikecodecoinminercommand and controlcookiecopycorecreation datecredential harvestingcredential stuffingcryptocurrencycyber espionaged417ndatadata centerdata exfiltrationdata store exposurediscorddistributed attacksdns attackdnssecdomaindownload encryptencryptencryptionentriesequation groupeu dataevasion techniquesexpirationexploitation activityfalse filesfannyfilesfirmware implantsgmtnhetznerhighhigh levelhighly targetedhistorical sslhostinghostnamehttphttp identifiericannidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityiocsipv4issuerskeykey algorithmkey identifierkey infoland uselink locationlog idmalicious softwaremalvertizingmalwaremanualmetametasploitmetromovednamename serversnation-state activitynetsupport ratnetworknextnidsno expirationnorth americanumberoceaniapassive dnspdf broadcompegasusphishingphishing attackprocess injectionpulse pulsespulse submitransomransomwareraspberry robinread crecord valueredacted referrerregistrant faxregistry domainregistry policyrelated nidsresearchedreverse dnsrussia unknownscan endpointsscriptscript domainssearchserverserversshowshowingsocial engineeringstate-sponsoredstop ransomwaresubjectsubject billingsubject keysubject publicsubmitsupply chain attackt1036 - masqueradingt1055t1060t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001threat actortls webtor nodetrojantsara brashearstypeunitedunited statesunited tls webunknown urlurlsv3 serialvpswhois recordwhois sslwhois whoiswindowswritex509v3zero-day exploits

Activity Timeline

1 total obs
May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **ad-noise.net**, originating from Australia, has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats. First observed on April

Threat ScoreMedium Risk
55
SIGNAL
Signal Score
55%
Confidence
5
Reports
First seenApr 17, 2021
Last seenMay 1, 2026
Verified IOC

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 5 years ago · Last seen 1 month ago
Appeared in 5 threat reports