DomainMediumSignal 92/100
cdn-analytics.co
Location
Iran, Islamic Republic ofFirst Seen
Nov 11, 2023
Last Seen
Feb 12, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
92%
Signal Score
92 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
11 reports92% confidence
11
Source reports
92%
Confidence score
Category tags
aerospace & defenseagriusasiaattacks-breachesbackbankingbladedfbotnetbrute forcec servercandirucertcitizen labcivil servicesclustercode injectioncommand and controlcommentcommunication technologiescredential accesscredential harvestingcredential stuffingcredit card servicescrowdstrikecuboid sandstormdata encryptiondata exfiltrationdefensedefense contractingdefense logisticsdefense systemsdefense technologydeploys noveldiscorddistributed attacksdistribution managementelectronic health recordsembassyenergyenergy distributioneset researchfigurefinancefinancial servicesfinancial technologyfirstfleet managementforeign affairsfreight forwardingfreight servicesftpgovernment technologygray sandstormhealth care and social assistancehealth information technologyhealthcare information systemshospital managementicmpimaploaderimperial kittenindicatorinformation technologyinfrastructure acquisitionreconnaissanceinventory managementiociranit infrastructureit servicekamrankarkadannkittenlaterlateral movementlemon sandstormlogistics technologymalicious linksmalicious softwaremalwaremanualmaritime transportmediamedical servicesmicrosoft excelmiddlemiddle eastmilitary operationsmobilemobile carriersmobile networksmobile securitymozinational securitynetscannetworknetwork protocolnorth americaoil & gaspaexecpaexec utilitypassenger transportationpatient carepayment processingphishingphishing attackpower generationpower systemsprocess injectionpublic administrationpublic infrastructurepublic policypumpkin sandstormpythonrail transportregulatory agenciesremote accessremote servicesrenewable energyresearchedshipping servicessocial engineeringsoftware developmentssh attackstrongsugarrushsupply chain managementt1016t1021.001t1021.002t1055t1059t1059.007t1064t1068t1071t1071.001t1076t1077t1110t1110.002t1190t1204.001t1486t1496t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1587.001t1590.001ta456targettechtelecom servicestelecommunicationstipstortoiseshelltransportation and warehousingtransportation infrastructuretransportation managementtransportation technologyturkeytwitterunited statesuuidwarehouse operationswatering holewealth managementweb compromiseweb exploitationweb securityyellow liderc
Activity Timeline
Feb 12Feb 12
Threat Activity Heatmap
· Peak: 2026-02-12LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **cdn-analytics.co** has emerged as a significant indicator of compromise (IOC) linked to malicious activities originating from Iran. First observed on November
Threat ScoreHigh Risk
92
SIGNAL
Signal Score
92%
Confidence
11
Reports
First seenNov 11, 2023
Last seenFeb 12, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Dynadot Inc
- creation date
- 2025-03-25T14:14:12
- expiration date
- 2027-03-25T23:59:59
- updated date
- 2026-03-05T09:17:02
- name servers
- NS1.HWRN.NET, NS2.HWRN.NET
- emails
- [email protected]
- status
- clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 4 months ago
Appeared in 11 threat reports