IOC Radar
DomainMediumSignal 93/100

cdnupdate.net

First Seen
Aug 24, 2023
Last Seen
Feb 12, 2026
Aug 24
First Seen
1034d ago
Feb 12
Last Seen
131d ago
7
Reports
source reports
93%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
93%
Signal Score
93 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

103 techniques

Feed Intelligence Summary

7 reports93% confidence
7
Source reports
93%
Confidence score
Category tags
botnetcommand and controlcredential harvestingdata exfiltrationdistributed attacksindicatorinfrastructure acquisitionreconnaissancemalicious softwaremalwaremanualnetworkphishing attackprocess injectionresearchedsocial engineeringt1003t1005t1007t1008t1011t1012t1016t1021t1027t1027.009t1027.013t1036t1036.005t1041t1047t1047.t1048t1049t1053t1053.005t1055t1056t1057t1059t1059.001t1059.003t1059.005t1059.006t1060t1070t1071t1071.001t1078t1081t1082t1083t1085t1087t1090t1095t1102t1102.002t1105t1106t1110t1112t1114t1114.001t1115t1119t1120t1124t1127t1130t1132t1133t1136t1137t1140t1176t1189t1190t1204t1204.001t1204.002t1204_-_user_executiont1218t1218.007t1485t1486t1490t1496t1497t1497.003t1499.002t1499.003t1503t1518t1529t1530t1531t1539t1543t1547t1550t1552t1553t1555t1561t1562t1562.001t1565t1566t1566.001t1566.002t1566.003t1566_-_phishingt1571t1573t1583t1583.003t1587t1587.001t1590.001t1595t1595.002

Activity Timeline

1 total obs
Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

This report details a critical Indicator of Compromise (IOC) identified as the domain `cdnupdate.net`, which poses a significant and immediate threat to organizational security. With an exceptionally high score of 93.1 and no whitelist status, this domain is strongly associated with malicious activities. Its presence in the environment suggests potential compromise, serving as a critical component in adversary infrastructure for command and control (C2) communications, malware delivery, or data …

Threat ScoreHigh Risk
93
SIGNAL
Signal Score
93%
Confidence
7
Reports
First seenAug 24, 2023
Last seenFeb 12, 2026

VirusTotal

Not checked

WHOIS

registrar
PDR Ltd. d/b/a PublicDomainRegistry.com
creation date
2026-06-11T02:00:55
expiration date
2027-06-11T02:00:55
updated date
2026-06-11T02:58:35
name servers
ART.NS.CLOUDFLARE.COM, GRANNBO.NS.CLOUDFLARE.COM
country
CN
emails
[email protected], [email protected]
org
GDPR Masked
status
clientTransferProhibited https://icann.org/epp#clientTransferProhibited

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 4 months ago
Appeared in 7 threat reports