DomainMediumSignal 39/100
apple-care-internal.com
First Seen
Jan 8, 2022
Last Seen
Jun 2, 2026
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
39%
Signal Score
39 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
9 reports39% confidence
9
Source reports
39%
Confidence score
Category tags
abuseabuse reportaccount discoveryaccount profilingaccount takeoveractive scanattachment_phishingattack vectorbad reputationbecbec attackbotnetbotnet activitybrand abusebrand impersonationbrute forcebusiness email compromisecommand and controlcommunication protocolcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftcredential-harvestingcredential_theftdata exfiltrationdata store exposuredeceptive marketingdistributed attacksemail-based attackemail-borne threatemail-fraudexploitation activityfinancefraudfraudulent activityfraudulent communicationfraudulent websitehttp scannerhttpsidentity & access exploitationindicatorindicators of compromiseindicators_of_compromiseinfrastructure acquisitionreconnaissanceingress tool transferinjection activityiociocslinklink manipulationlink_phishingmalicious attachmentmalicious downloadmalicious linkmalicious linksmalicious softwaremalicious-attachmentmalicious_contentmalwaremalware deliverymalware distributionmalware hostingmalware phishingnetworkphishingphishing attackphishing campaignphishing domain detectionphishing kitphishing-databaseprocess injectionransomwareresearchedrogue domainscams & fraudsecurity alertsecurity awarenesssecurity operationssecurity_awarenesssmtpsocial engineeringsocial engineering attackspamspam campaignsupply chain attackt1036 - masqueradingt1055t1056.001t1071t1071.001t1078t1078.004t1105t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1565t1566t1566 - phishingt1566.001t1566.002t1566.003t1566.004t1567t1567.001t1583t1583.001t1587t1587.001t1588t1588.002t1590.001t1598t1598.003threat intelligencethreat_actor_unknownthreat_intelligencetor nodetyposquattingurl-based attackuser_interactionweb securityweb trafficwebsite phishing
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
· Peak: 2026-06-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC) represents a significant threat primarily associated with sophisticated phishing campaigns. The domain apple-care-internal.com is explicitly designed to mimic legitimate Apple support infrastructure, likely intending to trick unsuspecting users into divulging sensitive information such as credentials or personal data. If successful, such a phishing attempt could lead to severe organizational impact, including widespread credential compromise, unauthorized acces…
Threat ScoreLow Risk
39
SIGNAL
Signal Score
39%
Confidence
9
Reports
First seenJan 8, 2022
Last seenJun 2, 2026
VirusTotal
Not checked
WHOIS
- registrar
- REGISTRAR OF DOMAIN NAMES REG.RU LLC
- description
- LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
- domain rank
- -1
- raw
- Creation Date: 2022-01-07T14:00:19Z DNSSEC: unsigned Domain Name: APPLE-CARE-INTERNAL.COM Domain Status: clientHold https://icann.org/epp#clientHold Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: pendingDelete https://icann.org/epp#pendingDelete Name Server: NS1.OFFSHORERACKS.COM Name Server: NS2.OFFSHORERACKS.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +74955801111 Registrar IANA ID: 1606 Registrar URL: http://www.reg.ru Registrar WHOIS Server: whois.reg.com Registrar: REGISTRAR OF DOMAIN NAMES REG.RU LLC Registry Domain ID: 2666585715_DOMAIN_COM-VRSN Registry Expiry Date: 2023-01-07T14:00:19Z Updated Date: 2023-03-18T11:17:02Z
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 years ago · Last seen 11 days ago
Appeared in 9 threat reports