DomainMediumSignal 79/100
diamotrix.world
Location
UkraineFirst Seen
Mar 23, 2025
Last Seen
Apr 14, 2026
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
79%
Signal Score
79 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
12 reports79% confidence
12
Source reports
79%
Confidence score
Category tags
abuseactive scanasciiasyncratattachment phishingautomated emailazorultbackdoorbad reputationbase64base64 encodingbecbookingbotnetbotnet activitybotnetdomainbraodobrute forcebulk emailc2c2 infrastructurecensyscobaltstrikecoinminercommand & controlcommand and controlcredential harvestingcredential phishingcredential stuffingcryptocurrencydata exfiltrationdata store exposuredata theftddosddos attacksdistributed attacksdomain-based iocsdonutloaderdropped-by-amadeyelfencodedeuropeeurope/asiaexeexecutable fileexploitation activityfakecaptchagergermanygh0stratghostsocksguloaderhajimehtaidentity & access exploitationindicatorinformation stealerinfostealerinfrastructure acquisitionreconnaissanceinjection activityinternet of thingsiociot botnetiot securityiot/ics attacklummastealermalicious softwaremalwaremirai botnetmsinetworkopendirpasswordpassword theftpayment fraudphishingphishing attackphishing campaignprice requestprice request scamprocess injectionransomwareratremcosratremote accessresearchedrussiarussian federationsaint helena, ascension and tristan da cunhascams & fraudschedule themescheduled task abusesharksocial engineeringsshdkitt1003t1003.001t1005t1027t1041t1055t1071t1071.001t1078t1078.001t1078.002t1078.004t1105t1133t1192t1204t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1567.002t1568.002t1573t1587.001t1590.001t1598t1598.003tariff server compromisetariff server themetariffs serverthreat actortor nodeua-wgetukrainevidarwetransfer abusexml-opendir
Activity Timeline
Apr 14Apr 14
Threat Activity Heatmap
· Peak: 2026-04-14LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **diamotrix.world**, originating from Ukraine, has emerged as a significant indicator of compromise (IOC) in the cybersecurity landscape. First observed on March
Threat ScoreHigh Risk
79
SIGNAL
Signal Score
79%
Confidence
12
Reports
First seenMar 23, 2025
Last seenApr 14, 2026
VirusTotal
Not checked
WHOIS
- description
- Domain that is used for botnet Command&control (C&C)
- domain rank
- -1
- raw
- Administrative city: REDACTED FOR PRIVACY Administrative country: REDACTED FOR PRIVACY Administrative state: REDACTED FOR PRIVACY Create date: 2025-02-21 00:00:00 Domain name: diamotrix.world Domain registrar id: 1068 Domain registrar url: https://www.namecheap.com/ Expiry date: 2026-02-21 00:00:00 Name server 1: dns1.registrar-servers.com Name server 2: dns2.registrar-servers.com Query time: 2025-02-22 09:50:25 Registrant city: 1f8f4166599d23ee Registrant company: b5ccaeb3c805e2cb Registrant country: Germany Registrant email: 29e2c061f3c9524es@ Registrant fax: 31d1617d95c9a75c Registrant name: 1f8f4166599d23ee Registrant phone: 31d1617d95c9a75c Registrant state: 39d3c2ec2b99d3a4 Registrant zip: 1f8f4166599d23ee Technical city: REDACTED FOR PRIVACY Technical country: REDACTED FOR PRIVACY Technical state: REDACTED FOR PRIVACY Update date: 2025-02-21 00:00:00
- references
- https://urlhaus.abuse.ch/browse/
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 month ago
Appeared in 12 threat reports