DomainMediumSignal 46/100
articles.whynotad.com
First Seen
Jan 19, 2025
Last Seen
May 1, 2026
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
46%
Signal Score
46 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
4 reports46% confidence
4
Source reports
46%
Confidence score
Category tags
abusealienvault_ransomwarebad reputationbotnetcommand and controlcredential harvestingdata exfiltrationdistributed attacksindicatorinfrastructure acquisitionreconnaissancemalicious softwaremalwaremanualnetworkphishing attackprocess injectionransomwareresearchedsocial engineeringt1055t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001
Activity Timeline
May 1May 1
Threat Activity Heatmap
· Peak: 2026-05-01LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **articles.whynotad.com** has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats, including botnets, malware, and ransomware. First observed on January
Threat ScoreMedium Risk
46
SIGNAL
Signal Score
46%
Confidence
4
Reports
First seenJan 19, 2025
Last seenMay 1, 2026
VirusTotal
Not checked
WHOIS
- registrar
- TurnCommerce, Inc. DBA NameBright.com
- creation date
- 2007-05-05T13:01:02
- expiration date
- 2027-05-05T13:01:02
- updated date
- 2026-05-06T08:21:00
- name servers
- NSG1.NAMEBRIGHTDNS.COM, NSG2.NAMEBRIGHTDNS.COM
- country
- US
- org
- HugeDomains.com
- status
- clientTransferProhibited https://icann.org/epp#clientTransferProhibited, clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 month ago
Appeared in 4 threat reports