DomainMediumSignal 100/100
dian.server.tl
First Seen
Mar 1, 2023
Last Seen
Feb 19, 2026
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
6 reports99% confidence
6
Source reports
99%
Confidence score
Category tags
botnetbrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential stuffingdata exfiltrationdenial of servicedistributed attacksftp brute forcehttp brute forceindicatormalicious softwaremalwarenetworknetwork attacksnetwork protocolpassword attackspossible reconnaissance activityprocess injectionresearchedssh attackt1040t1055t1056t1059t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1595tcp protocol
Activity Timeline
Feb 19Feb 19
Threat Activity Heatmap
· Peak: 2026-02-19LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **dian.server.tl** has emerged as a significant indicator of compromise (IOC) associated with botnet and malware activities. First observed on March
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
6
Reports
First seenMar 1, 2023
Last seenFeb 19, 2026
VirusTotal
Not checked
WHOIS
- registrar
- InterNetX GmbH
- creation date
- 2008-01-21T13:54:40
- expiration date
- 2027-01-21T13:54:38
- updated date
- 2026-01-08T16:07:00
- name servers
- ns1.website.org, ns2.website.org
- status
- active https://icann.org/epp#active, clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen 4 months ago
Appeared in 6 threat reports