DomainMediumSignal 70/100
durecharga.monster
Location
Russian FederationFirst Seen
May 24, 2024
Last Seen
Mar 9, 2026
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
70%
Signal Score
70 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
12 reports70% confidence
12
Source reports
70%
Confidence score
Category tags
account discoveryaccount profilingaccount takeoveraccount takeover attemptactive scanningattachment phishingattackauthentication attackbecbotnetbrand impersonationbrute forcebusiness email compromisec2command and controlcompromised accountcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftdata exfiltrationdata theftdenial of servicedistributed attackseurope/asiafinancefraudftp brute forcehttp brute forcehydra attackindicatorlink injectionlink obfuscationlink redirectionlogin attacklogin attemptsmalicious activitymalicious attachmentmalicious linkmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmalware phishingmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing activityphishing attackphishing campaignphishing-databaseprocess injectionprotocol exploitationrdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedrussiarussian federationservice enumerationsmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1539t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1567t1567.001t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat actorudp scanvulnerability scanweb securitywebsite phishing
Activity Timeline
Mar 9Mar 9
Threat Activity Heatmap
· Peak: 2026-03-09LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **durecharga.monster** has emerged as a significant indicator of compromise (IOC) linked to multiple cyber threats originating from the Russian Federation. First observed on May
Threat ScoreMedium Risk
70
SIGNAL
Signal Score
70%
Confidence
12
Reports
First seenMay 24, 2024
Last seenMar 9, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Dynadot LLC
- description
- For POC
- domain rank
- -1
- raw
- Creation Date: 2024-05-08T09:11:52.0Z DNSSEC: unsigned Domain Name: DURECHARGA.MONSTER Domain Status: clientHold https://icann.org/epp#clientHold Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: pendingDelete https://icann.org/epp#pendingDelete Domain Status: redemptionPeriod https://icann.org/epp#redemptionPeriod Domain Status: serverHold https://icann.org/epp#serverHold Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited Name Server: NS1.DYNA-NS.NET Name Server: NS2.DYNA-NS.NET Registrant Country: US Registrant Email: f651612a2f356ad3s@ Registrant Organization: 3432650ec337c945 Registrant State/Province: b1952dfc047df18a Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.6502620100 Registrar IANA ID: 472 Registrar URL: http://www.dynadot.com Registrar WHOIS Server: whois.dynadot.com Registrar: Dynadot LLC Registry Domain ID: D453222900-CNIC Registry Expiry Date: 2025-05-08T23:59:59.0Z Updated Date: 2025-06-18T18:16:23.0Z
- references
- https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 3 months ago
Appeared in 12 threat reports