DomainMediumSignal 42/100
blueocean-plus.com
Location
United StatesFirst Seen
Mar 13, 2024
Last Seen
Jun 2, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
42%
Signal Score
42 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
11 reports42% confidence
11
Source reports
42%
Confidence score
Category tags
account compromiseactive scanactive scanningattachment phishingattachment-based attackbad reputationbecbotnetbotnet activitybrand abusebrand impersonationbrute forcebusiness email compromisecommand and controlcommunication protocolcredential harvestingcredential phishingcredential stuffingcredential theftcredential-harvestingcredential_harvestingdata exfiltrationdata store exposuredistributed attacksdomainsemail-phishingexploitation activityfinancefraudhttp scannerhttpsidentity & access exploitationindicatorindicators of compromiseinfrastructure acquisitionreconnaissanceinitial accessinjection activityiocip-addresslink injectionlink-based attackmalicious attachmentmalicious linksmalicious softwaremalicious websitemalicious_urlmalwaremalware deliverymalware distributionnetflixnetflix phishing campaignnetworknetwork probingnorth americaphishingphishing attackphishing campaignphishing urlphishing-campaignphishing-databasephishing_attackprocess injectionransomwareransomware vectorreconnaissanceresearchedscamscams & fraudsecurity operationssmtpsocial engineeringsocial engineering attackspear-phishingspearphishingsuspicious-urlt1055t1071t1071.001t1078t1078.001t1189t1190t1192t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1534t1552t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1587.001t1590.001t1595.001t1595.002t1595.003t1598t1598.003threat indicatorsthreat intelligencethreat-intelligencetor nodeunited statesurlsweb securityweb traffic
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
· Peak: 2026-06-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain `blueocean-plus.com` has been identified as a significant Indicator of Compromise (IOC) with a notable threat score of 42.36, indicating a high probability of malicious activity. This IOC is primarily associated with phishing campaigns, posing a direct and severe risk of credential theft, unauthorized access, and potentially the broader compromise of organizational systems. If left unaddressed, this threat could lead to significant financial losses, reputational damage, and a loss of …
Threat ScoreMedium Risk
42
SIGNAL
Signal Score
42%
Confidence
11
Reports
First seenMar 13, 2024
Last seenJun 2, 2026
VirusTotal
Not checked
WHOIS
- registrar
- HOSTINGER operations, UAB
- description
- LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
- domain rank
- -1
- raw
- Creation Date: 2023-06-20T07:01:57Z DNSSEC: unsigned Domain Name: BLUEOCEAN-PLUS.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: DNS1.NAMECHEAPHOSTING.COM Name Server: DNS2.NAMECHEAPHOSTING.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +37064503378 Registrar IANA ID: 1636 Registrar URL: http://www.hostinger.com Registrar WHOIS Server: whois.hostinger.com Registrar: HOSTINGER operations, UAB Registry Domain ID: 2791801426_DOMAIN_COM-VRSN Registry Expiry Date: 2026-06-20T07:01:57Z Updated Date: 2025-07-27T13:20:53Z
- references
- https://www.virustotal.com/gui/collection/8d1559301ff7ccf0d26c823bfcb6748986a446f296c9782ef890d227b2966be6
- subdomains count
- 3
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 8 days ago
Appeared in 11 threat reports