DomainMediumSignal 88/100
cloudflare.report
Location
GermanyFirst Seen
Mar 16, 2026
Last Seen
Jun 6, 2026
Mar 16
First Seen
88d ago
Jun 6
Last Seen
6d ago
12
Reports
source reports
88%
Confidence
medium
18/91
VirusTotal
detections
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
88%
Signal Score
88 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
12 reports88% confidence
12
Source reports
88%
Confidence score
Category tags
abusealienvault_ransomwareaptbackdoorbad reputationcyber campaigndata encryptiondata exfiltrationdata store exposureencryptioneuropeexploitation activityextortiongermanyglasswormindicatorinjection activityiocmalicious softwaremalwaremanual-collectionmedium-riskmulti-vector threat campaignnetworkoperation camelclonephishingprocess injectionransomwareremote accessresearchedsystem disruptiont1012t1027t1041t1055t1059t1059.003t1071t1071.001t1082t1105t1133t1140t1204.002t1486t1490t1497t1547.001t1565t1566t1573.002tengu ransomwarethreat actorthreat grouptor nodetype osintvoid#geistyarayara rule
Activity Timeline
Jun 6Jun 6
Threat Activity Heatmap
· Peak: 2026-06-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **cloudflare.report** has emerged as a significant indicator of compromise (IOC) linked to multiple cyber threats, including malware, phishing, and ransomware activities. Originating from Germany, this domain has been observed in at least one threat intelligence report, with its first appearance noted on March
Threat ScoreHigh Risk
88
SIGNAL
Signal Score
88%
Confidence
12
Reports
First seenMar 16, 2026
Last seenJun 6, 2026
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 months ago · Last seen 6 days ago
Appeared in 12 threat reports