DomainMediumSignal 66/100
dhl-urgent-alert-ca.com
Location
ItalyFirst Seen
Feb 17, 2024
Last Seen
Apr 12, 2026
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
66%
Signal Score
66 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
7 reports66% confidence
7
Source reports
66%
Confidence score
Category tags
accessactive scanadminasiaaustriabbkbec attemptbettingbhutanblueskybotnetbotnet activitybrbrand impersonationbrute forcecanadachemical & pharmaceuticalcmscommand and controlconfigcredential harvestingcredential stuffingcredential theftcrypto currencycryptocurrencycssdata exfiltrationdata store exposuredelivery service scamdetailsdhldhl phishing campaigndistributed attacksdomaindomainsexecutable fileexploitation activityexpressfinancefintechfleet managementfrancefraudfreight servicesgaminggermanygithubglobalgroupshtmlhttphttpshungaryidentity & access exploitationimagesindexindicatorinfoinformation technologyinfrastructure acquisitionreconnaissanceinjection activityiot securityipfsirelanditalymalicious linksmalicious softwaremalwaremaritime transportmedia & entertainmentmediummexiconetnetworknorth americapagepassenger transportationphishingphishing attackphishing domainsphishing urlsphppioneerplpleskpolandprocess injectionragnarokrail transportransomwarerecaptcharesearchedretailromaniascamscams & fraudscriptshipping & logisticsslugsmssocial engineeringsoftware publishersupportsurface webt1055t1071.001t1071.004t1078t1189t1192t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1583t1583.001t1587.001t1588t1588.002t1588.004t1590.001t1598t1598.003telecommunicationthreat actortinymcetor nodetransportation and warehousingtransportation infrastructuretransportation technologytwitterunited statesuploadurlurlsweb securitywebsite
Activity Timeline
Apr 12Apr 12
Threat Activity Heatmap
· Peak: 2026-04-12LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **dhl-urgent-alert-ca.com** has emerged as a significant indicator of compromise (IOC) linked to multiple cyber threats, including botnets, malware, phishing, and ransomware. First observed on February
Threat ScoreMedium Risk
66
SIGNAL
Signal Score
66%
Confidence
7
Reports
First seenFeb 17, 2024
Last seenApr 12, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Hosting Concepts B.V. d/b/a Registrar.eu
- description
- This page stores DHL phishing page IOCs. Legitimate website for the brand is https://www.dhl.com/ NOLA defense is tracking newly observed phishing websites. Follow us on twitter https://twitter.com/noladefense
- domain rank
- -1
- raw
- Creation Date: 2024-02-17T00:31:48Z DNSSEC: unsigned Domain Name: DHL-URGENT-ALERT-CA.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: redemptionPeriod https://icann.org/epp#redemptionPeriod Name Server: INA1.REGISTRAR.EU Name Server: INA2.REGISTRAR.EU Name Server: INA3.REGISTRAR.EU Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +31.104482297 Registrar IANA ID: 1647 Registrar URL: http://www.openprovider.com Registrar WHOIS Server: whois.registrar.eu Registrar: Hosting Concepts B.V. d/b/a Registrar.eu Registry Domain ID: 2855958913_DOMAIN_COM-VRSN Registry Expiry Date: 2025-02-17T00:31:48Z Updated Date: 2025-03-29T02:36:32Z
- references
- https://www.virustotal.com/gui/collection/9e06470d30593e11c8daad2157e0d4ef1ccce47787e2b5303846704767c26d6a, https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
- subdomains count
- 4
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 1 month ago
Appeared in 7 threat reports