DomainMediumSignal 75/100

`dbgopaxl.com`

Location

Ukraine

First Seen

Mar 3, 2026

Last Seen

Jun 15, 2026

Mar 3

First Seen

110d ago

Jun 15

Last Seen

7d ago

Reports

source reports

75%

Confidence

medium

Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

75%

Signal Score

75 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

58 techniques

Feed Intelligence Summary

11 reports75% confidence

Source reports

75%

Confidence score

Category tags

active scanactive scanningattack vector: webautomated analysisautomated exploitationautomated reconnaissanceautomated scanautomated scanningautomated sweepautomated-scanningbankingblocklistbotnet activitybotnet infrastructurebrowser vulnerabilitybrute forcebrute force attemptbrute force attemptsbrute_forcebrute_force_attackc2c2 activityc2 communicationc2 infrastructurec2_activityclient-side attackclient-side exploitclient-side exploitation campaignclient-side exploitscommand & controlcommand and controlcommunication protocolcompromised hostcorunacredential accesscredential stuffingcredit card servicescryptocryptocurrencycryptocurrency theftcryptocurrency threatscryptojackingdata encryptiondata exfiltrationdata store exposuredestroylist_phishingdgadomainsdrainerencryptioneuropeexploitexploit kitexploitation activityexploitation kitfinancefinancial crimefinancial servicesfinancial technologyfinancial theftfraudftpftp brute forcehttp scannerhttp/https c2httpsidentity & access exploitationindicatorindicators of compromiseinjection activityiosiphonelateral movementmalicious network activitymalicious softwaremalwaremalware deliverymalware detectionmalware distributionmalware trafficmalware_detectedmanual-collectionmedium-riskmobile malwaremobile securitymobile threatmonthlynation-state activitynetworknetwork intrusionnetwork intrusion attemptnetwork probingnetwork protocolnetwork scanningnetwork securitynovel iocnovel ioc detectionnovel iocsnovel-iocnovel_iocpayment processingphishingpotential exploitprecogprocess injectionprotocol exploitationransomwarereconnaissanceremote accessremote servicesresearchedresource hijackingscamscams & fraudsecurity operationssmtpssh attackt1016t1021t1021.001t1021.002t1040t1046t1048t1053t1055t1055: process injectiont1056t1056.001t1059t1059.007t1064t1068t1071t1071.001t1076t1077t1078t1082t1083t1102.003t1106t1110t1110.002t1129t1133t1189t1189: drive-by compromiset1190t1203t1204t1204.001t1213t1219t1486t1496t1497t1499.002t1518t1555t1559t1560t1563t1565t1566t1566.002t1569t1571t1583t1584t1588t1588.006t1595t1595.001t1595.002t1595.003t1608tcp-scanningtelnet threatthreat actorthreat intelligencetor nodetype osintukraineunc6691vulnerability scanwealth managementweb exploitweb malwareweb traffic

Activity Timeline

1 total obs

Jun 15Jun 15

Threat Activity Heatmap

· Peak: 2026-06-15

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Minimal

3mo

Minimal

Threat ScoreHigh Risk

SIGNAL

Signal Score

75%

Confidence

Reports

First seenMar 3, 2026

Last seenJun 15, 2026

VirusTotal

Not checked

WHOIS

registrar: Cloudflare, Inc.
creation date: 2024-04-07T08:57:37
expiration date: 2027-04-07T08:57:37
updated date: 2026-03-08T04:18:58
name servers: RUSTAM.NS.CLOUDFLARE.COM, STEVIE.NS.CLOUDFLARE.COM
country: CN
emails: [email protected]
org: DATA REDACTED
status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited

`dbgopaxl.com`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey