IOC Radar
DomainHighVerifiedSignal 35/100

advancedserverdns.com

Location
United StatesUnited States
First Seen
Mar 3, 2025
Last Seen
Jun 19, 2026
Mar 3
First Seen
482d ago
Jun 19
Last Seen
10d ago
5
Reports
source reports
35%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

16 techniques

Feed Intelligence Summary

5 reports35% confidence
5
Source reports
35%
Confidence score
Category tags
active scanactive scanningasiabad web botblog spambotnet activitybrute forcebrute force attackbrute-forcebruteforcecredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdenial of serviceexploitation activityexploited hostftp brute-forcehackingidentity & access exploitationinindiaindicatorinjection activityinjection attacksiot securityiot targetedmalwarenetworknorth americapassword attacksphishingphishing attackping of deathreconnaissanceresearchedscannersocial engineeringspamsshssh attackt1059.003t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1499.001t1499.002t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003united statesweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
Jun 19Jun 19

Threat Activity Heatmap

· Peak: 2026-06-19
Less
More
Mon
Wed
Fri
Jun
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **advancedserverdns.com** has been identified as a significant indicator of compromise (IOC) associated with multiple malicious activities, including malware distribution, phishing campaigns, network scanning, and spam operations. Originating from the United States, this domain has been actively involved in threat actor operations since its first sighting on March

Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
5
Reports
First seenMar 3, 2025
Last seenJun 19, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

registrar
PDR Ltd. d/b/a PublicDomainRegistry.com
domain rank
-1
raw
Admin City: Burlington Admin Country: US Admin Email: [email protected] Admin Organization: Privacy Protect, LLC (PrivacyProtect.org) Admin Postal Code: 01803 Admin State/Province: MA Creation Date: 2016-07-11T10:22:45Z DNSSEC: Unsigned DNSSEC: unsigned Domain Name: ADVANCEDSERVERDNS.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: GABE.NS.CLOUDFLARE.COM Name Server: LARA.NS.CLOUDFLARE.COM Name Server: gabe.ns.cloudflare.com Name Server: lara.ns.cloudflare.com Registrant City: 7ba6c62985322478 Registrant Country: US Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: 3432650ec337c945 Registrant Name: edeae57e15fec50a Registrant Organization: b61af69881455ade Registrant Phone Ext: 3432650ec337c945 Registrant Phone: dbbc67aba64dff83 Registrant Postal Code: 6a048084caacaa97 Registrant State/Province: 36e414cc8874c746 Registrant Street: 53b107811872c5e2 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.2013775952 Registrar IANA ID: 303 Registrar Registration Expiration Date: 2028-07-11T10:22:45Z Registrar URL: http://www.publicdomainregistry.com Registrar URL: www.publicdomainregistry.com Registrar WHOIS Server: whois.PublicDomainRegistry.com Registrar WHOIS Server: whois.publicdomainregistry.com Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com Registry Admin ID: Not Available From Registry Registry Domain ID: 2041802164_DOMAIN_COM-VRSN Registry Expiry Date: 2028-07-11T10:22:45Z Registry Registrant ID: Not Available From Registry Registry Tech ID: Not Available From Registry Tech City: Burlington Tech Country: US Tech Email: [email protected] Tech Organization: Privacy Protect, LLC (PrivacyProtect.org) Tech Postal Code: 01803 Tech State/Province: MA Updated Date: 2018-12-13T14:36:53Z Updated Date: 2018-12-13T14:36:54Z
subdomains count
249

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 year ago · Last seen 10 days ago
Appeared in 5 threat reports