IOC Radar
DomainMediumSignal 79/100

bot.freemaple.net

Location
TurkeyTurkey
First Seen
Jun 19, 2022
Last Seen
Apr 15, 2026
Jun 19
First Seen
1454d ago
Apr 15
Last Seen
59d ago
10
Reports
source reports
79%
Confidence
medium
16/91
VirusTotal
detections
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
79%
Signal Score
79 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

22 techniques

Feed Intelligence Summary

10 reports79% confidence
10
Source reports
79%
Confidence score
Category tags
active scanbitratbotnetbotnet activitybrute forcec2 domainscertcommand & controlcommand and controlcredential harvestingcredential stuffingdata exfiltrationdata store exposuredistributed attacksexploitation activityidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityiocmalicious softwaremalwaremanualnetworkphishingphishing attackprocess injectionremote accessremote access trojanresearchedsocial engineeringt1005t1041t1055t1059t1071t1071.001t1083t1105t1204t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1571t1573t1573.001t1587.001t1590.001turkey

Activity Timeline

1 total obs
Apr 15Apr 15

Threat Activity Heatmap

· Peak: 2026-04-15
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **bot.freemaple.net** has been identified as an active indicator of compromise (IOC) associated with botnet, malware, and phishing activities. Originating from Turkey, this malicious IP has been observed conducting active scans, brute force attacks, and other botnet activities since its first appearance on June

Threat ScoreHigh Risk
79
SIGNAL
Signal Score
79%
Confidence
10
Reports
First seenJun 19, 2022
Last seenApr 15, 2026

VirusTotal

16/ 91vendors flagged
18% detection rateJun 8, 2026

WHOIS

registrar
DYNADOT LLC
description
Command and Control domains for BitRAT. These domains are extracted from a number of sources, and are suspicious.
raw
Admin City: San Mateo Admin Country: US Admin Email: [email protected] Admin Postal Code: 94401 Admin State/Province: CA Creation Date: 2024-06-18T21:09:51.0Z Creation Date: 2024-06-18T21:09:51Z DNSSEC: unsigned Domain Name: FREEMAPLE.NET Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: NS1.DYNA-NS.NET Name Server: NS2.DYNA-NS.NET Name Server: ns1.dyna-ns.net Name Server: ns2.dyna-ns.net Registrant City: 3715f4e2b12e17cb Registrant Country: US Registrant Email: [email protected] Registrant Name: 388d6d67ffb0a171 Registrant Phone: 41a341e8a1e0e8ba Registrant Postal Code: ae51fcfbe03bd2c4 Registrant State/Province: b1952dfc047df18a Registrant Street: 8a188706046fdffa Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.6502620100 Registrar Abuse Contact Phone: +16502620100 Registrar IANA ID: 472 Registrar Registration Expiration Date: 2025-06-18T21:09:51.0Z Registrar URL: http://www.dynadot.com Registrar WHOIS Server: whois.dynadot.com Registrar: DYNADOT LLC Registrar: Dynadot Inc Registry Domain ID: 2891916870_DOMAIN_NET-VRSN Registry Expiry Date: 2026-06-18T21:09:51Z Tech City: San Mateo Tech Country: US Tech Email: [email protected] Tech Postal Code: 94401 Tech State/Province: CA Updated Date: 2025-06-19T07:51:30Z Updated Date: 2025-07-18T21:13:03.0Z

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 1 month ago
Appeared in 10 threat reports