IOC Radar
DomainMediumSignal 71/100

dpd-pl.ownan.store

Location
PolandPoland
First Seen
Oct 27, 2023
Last Seen
Apr 6, 2026
Oct 27
First Seen
968d ago
Apr 6
Last Seen
77d ago
7
Reports
source reports
71%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

27 techniques

Feed Intelligence Summary

7 reports71% confidence
7
Source reports
71%
Confidence score
Category tags
access controlactive scanattackbotnetbotnet activitybrute forcec2certcommand & controlcommand and controlcompromised infrastructurecompromised websitecredential harvestingcredential stuffingcredential theftdata exfiltrationdata store exposuredistributed attackseuropeexploitation activityfinancefraudidentity & access exploitationindicatorinjection activitymalicious activitymalicious domain activitymalicious domain disseminationmalicious softwaremalicious urlsmalwaremalware distributionmalware hostingnetworkphishingphishing attackpolandprocess injectionresearchedscams & fraudsecurity policysocial engineeringt1055t1071t1071.001t1071.004t1078t1105t1189t1190t1204t1204.002t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1567.001t1583t1583.001t1586t1586.001t1588t1588.002t1588.006threat actorthreat intelligence feedthreat preventiontor node

Activity Timeline

1 total obs
Apr 6Apr 6

Threat Activity Heatmap

· Peak: 2026-04-06
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), dpd-pl.ownan.store, represents a significant and urgent threat to organizational security, evidenced by its high score of 71.197. This domain is highly indicative of malicious activity, likely serving as infrastructure for phishing campaigns, malware distribution, or command-and-control operations. Its nature suggests a potential impersonation of a legitimate delivery service, DPD Poland, making it a critical risk for social engineering attacks targeting emplo…

Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
7
Reports
First seenOct 27, 2023
Last seenApr 6, 2026

VirusTotal

Not checked

WHOIS

registrar
Registrar of Domain Names REG.RU LLC
description
See: https://cert.pl/en/warning-list/ (archived version here: https://web.archive.org/web/20231029161224/https://cert.pl/en/posts/2020/03/malicious_domains/)
raw
Admin City: Knoxville Admin Country: US Admin Email: [email protected] Admin Organization: Private Person Admin Postal Code: 37929 Admin State/Province: Tennessee Creation Date: 2023-10-23T18:47:29.0Z Creation Date: 2023-10-23T18:47:30Z DNSSEC: unsigned Domain Name: OWNAN.STORE Domain Status: autoRenewPeriod https://icann.org/epp#autoRenewPeriod Domain Status: serverHold https://icann.org/epp#serverHold Name Server: NS1.EXPIRED.REG.RU Name Server: NS2.EXPIRED.REG.RU Name Server: carlane.ns.cloudflare.com Name Server: coen.ns.cloudflare.com Registrant City: 5d65f9e20c298074 Registrant Country: US Registrant Email: [email protected] Registrant Email: f651612a2f356ad3s@ Registrant Fax Ext: 3432650ec337c945 Registrant Fax: a33698b5b19d4e2d Registrant Name: 9e2ed0649e6560e0 Registrant Organization: 4c58731460c07301 Registrant Phone Ext: 3432650ec337c945 Registrant Phone: a33698b5b19d4e2d Registrant Postal Code: dafa2a4f5583eb48 Registrant State/Province: c9404e94dfda5ce7 Registrant Street: b06bdcd1e2e38e6c Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +7.4955801111 Registrar IANA ID: 1606 Registrar Registration Expiration Date: 2024-10-23T18:47:30Z Registrar URL: https://www.reg.com Registrar URL: https://www.reg.ru/ Registrar WHOIS Server: whois.reg.com Registrar WHOIS Server: whois.reg.ru Registrar: Registrar of Domain Names REG.RU LLC Registrar: Registrar of Domain Names REG.RU, LLC Registry Admin ID: xzqeckav164bo4jl Registry Domain ID: D405206592-CNIC Registry Expiry Date: 2025-10-23T23:59:59.0Z Registry Registrant ID: qopte5al-63xp9fe Registry Tech ID: in856h7p-fyhwhhz Tech City: Knoxville Tech Country: US Tech Email: [email protected] Tech Organization: Private Person Tech Postal Code: 37929 Tech State/Province: Tennessee Updated Date: 0001-01-01T00:00:00Z Updated Date: 2024-10-24T00:29:30.0Z

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 2 months ago
Appeared in 7 threat reports