IOC Radar
DomainMediumSignal 78/100

dysonus.com

First Seen
Apr 27, 2024
Last Seen
Apr 7, 2026
Apr 27
First Seen
775d ago
Apr 7
Last Seen
65d ago
12
Reports
source reports
78%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

44 techniques

Feed Intelligence Summary

12 reports78% confidence
12
Source reports
78%
Confidence score
Category tags
account discoveryaccount profilingaccount takeoveraccount takeover attemptactive scanactive scanningattachment basedattachment phishingattackauthentication attackbecbotnetbotnet activitybrand impersonationbrute forcebusiness email compromisecommand and controlcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftdata exfiltrationdata store exposuredata theftddosdenial of servicedistributed attacksexploitation activityfinancefraudftp brute forcehttp brute forcehydra attackidentity & access exploitationindicatorinjection activitylink injectionlink obfuscationlink redirectionlogin attacklogin attemptsmalicious activitymalicious attachmentmalicious linkmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmalware phishingmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing kitphishing-databaseprocess injectionprotocol exploitationransomwarerdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedscams & fraudservice enumerationservice scansmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1539t1563t1565t1566t1566.001t1566.002t1566.003t1567t1567.001t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat actortor nodeudp scanvulnerability scanweb security

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
12
Reports
First seenApr 27, 2024
Last seenApr 7, 2026

VirusTotal

Not checked

WHOIS

description
For POC
domain rank
-1
raw
Administrative city: Tempe Administrative country: United States Administrative state: Arizona Create date: 2024-02-29 00:00:00 Domain name: dysonus.com Domain registrar id: 146 Domain registrar url: https://www.godaddy.com Expiry date: 2027-02-28 00:00:00 Name server 1: chin.ns.cloudflare.com Name server 2: mcgrory.ns.cloudflare.com Query time: 2024-03-01 10:48:25 Registrant city: a7319ae5e6c95df5 Registrant company: b46a98a26fe2fd9f Registrant country: United States Registrant email: 1aeffed4510a40cas@ Registrant name: 80315b2e6ac1a801 Registrant phone: b03d5abc696b79f6 Registrant state: 30bdd2917a604c83 Registrant zip: 052e5bd148f904f9 Technical city: Tempe Technical country: United States Technical state: Arizona Update date: 2024-02-29 00:00:00
references
https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
subdomains count
2

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 2 months ago
Appeared in 12 threat reports