DomainMediumSignal 0/100
blog.eclecticiq.com
Location
UkraineFirst Seen
Mar 12, 2025
Last Seen
Feb 13, 2026
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
3 reports0% confidence
3
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Feb 13Feb 13
Threat Activity Heatmap
· Peak: 2026-02-13LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **blog.eclecticiq.com**, originating from Ukraine, has been identified as a potential indicator of compromise (IOC) in cybersecurity threat intelligence reports. First observed on March
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
3
Reports
First seenMar 12, 2025
Last seenFeb 13, 2026
VirusTotal
Not checked
WHOIS
- description
- Between June and July 2025, a series of coordinated brute force and password spraying attacks were orchestrated from a group of Ukrainian networks, including FDN3, VAIZ, and E-RISHENNYA, alongside a Seychelles-based network known as TK-NET. FDN3, attributed to FOP Dmytro Nedilskyi and identified as AS211736, was particularly active, targeting SSL VPN and RDP devices and executing hundreds of thousands of such attacks over spans of up to three days. The malicious infrastructure exploited shared IPv4 prefixes among itself and its affiliated networks to bypass blocklists, indicating a sophisticated evasive strategy likely managed by a common administrator.
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 4 months ago
Appeared in 3 threat reports