IOC Radar
DomainMediumSignal 12/100

dsd.cc

Location
Hong KongHong Kong
First Seen
Mar 31, 2025
Last Seen
Jun 7, 2026
Mar 31
First Seen
449d ago
Jun 7
Last Seen
17d ago
3
Reports
source reports
12%
Confidence
medium
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
12%
Signal Score
12 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

37 techniques

Feed Intelligence Summary

3 reports12% confidence
3
Source reports
12%
Confidence score
Category tags
aaaaaacraccount securityactive scanningaddressagentagent teslaalexa topamazon awsapple iosapple privateasiaattackauthentihashbank securitybankerbody lengthbrashears typebrute forcecisco umbrellaclick-based attackcobalt strikecode executioncode injectioncommand and controlcommand executioncommentcorecorporate lawcredential accesscredential harvestingcredential stuffingcsc corporatedatadata accessdata collectiondata copyingdata exfiltrationdata transferdelivery statusdelphidetections typedirectdriver prodroppeddropped filesemotetencryptentriesexpirationexploitexploit public-facing applicationfilesfinal urlfinancefinancial institutionfinancial servicesfirstftp brute forcegandi sasgc abusegoogl2google llcgoogle updateheurhidden privacyhighly targetedhistorical sslhong konghttp attackhttp responsehybridicmpindicatorinfrastructure acquisitionreconnaissanceingress tool transferintelintellectual property lawkeyloggerlateral movementlaw practicelegal consultinglegal researchlegal serviceslegal technologylinkmagic pe32malicious activitymalicious downloadmalicious linksmalicious softwaremalwaremalware distributionmetromillionmobilemobile securitymonitoringnamename verdictnetworknetwork intrusionnetwork scanningno expirationoperating system securityoptimizer proorgidos2 executablepassive dnspe resourcephishingphishing attackprocess injectionpulses urlreconnaissanceregulatory compliancerelicremote accessremote servicesresearchedruntime processsafe sitesearchserving ipsetup sha256showingsitesizesneaky serversocial engineeringsoftware exploitationspace systemsssdeepssh attackssl certificatestatus codestringssummary iocst1005t1021t1021.001t1027t1030t1055t1059t1059.001t1059.007t1064t1071.001t1076t1078t1105t1110t1110.002t1190t1203t1204.001t1204.002t1486t1499.001t1499.002t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1569.002t1587.001t1590.001t1595t1595.001t1595.002t1595.003teamtemptexttext ipthreat actorthreat roundupthreats httpstrid windowstsara brashearstype datatype nameunicode textunionunitedunsafeurlsuser executionutc submissionsvhashweb exploitationweb securitywhois lookupwhois recordwhois whoiswife happywin32 exeyouth

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **dsd.cc**, originating from Hong Kong, has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats. First observed on March

Threat ScoreLow Risk
12
SIGNAL
Signal Score
12%
Confidence
3
Reports
First seenMar 31, 2025
Last seenJun 7, 2026

VirusTotal

Not checked

WHOIS

registrar
Gname.com Pte. Ltd.
domain rank
-1
raw
Admin City: Redacted for privacy Admin Country: Redacted for privacy Admin Organization: Redacted for privacy Admin Postal Code: Redacted for privacy Admin State/Province: Redacted for privacy Creation Date: 2011-03-30T20:42:18Z DNSSEC: unsigned Domain Name: DSD.CC Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: CARLOS.NS.CLOUDFLARE.COM Name Server: NATASHA.NS.CLOUDFLARE.COM Registrant City: ddb75a553547a419 Registrant Country: HK,CN Registrant Email: fd86b2ee7777cbcbs@ Registrant Fax: ddb75a553547a419 Registrant Name: ddb75a553547a419 Registrant Organization: ddb75a553547a419 Registrant Phone: ddb75a553547a419 Registrant Postal Code: ddb75a553547a419 Registrant State/Province: ddb75a553547a419 Registrant Street: ddb75a553547a419 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +65.31581931 Registrar Abuse Contact Phone: +65.65189986 Registrar IANA ID: 1923 Registrar Registration Expiration Date: 2026-03-30T20:42:18Z Registrar URL: http://www.gname.com Registrar URL: www.gname.com Registrar WHOIS Server: whois.gname.com Registrar: Gname.com Pte. Ltd. Registry Domain ID: 96507057_DOMAIN_CC-VRSN Registry Expiry Date: 2026-03-30T20:42:18Z Registry Registrant ID: Redacted for privacy Tech City: Redacted for privacy Tech Country: Redacted for privacy Tech Organization: Redacted for privacy Tech Postal Code: Redacted for privacy Tech State/Province: Redacted for privacy Updated Date: 2025-08-04T19:56:48Z Updated Date: 2025-08-04T19:56:50Z
subdomains count
3

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 17 days ago
Appeared in 3 threat reports