IOC Radar
DomainMediumSignal 73/100

dzcord.xyz

Location
United StatesUnited States
First Seen
Jun 8, 2022
Last Seen
Mar 26, 2026
Jun 8
First Seen
1465d ago
Mar 26
Last Seen
78d ago
7
Reports
source reports
73%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
73%
Signal Score
73 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

39 techniques

Feed Intelligence Summary

7 reports73% confidence
7
Source reports
73%
Confidence score
Category tags
account takeover attemptactive scanningauthentication attackbecbotnetbrand impersonationbrute forcecommand and controlcredential accesscredential harvestingcredential phishingcredential stuffingdata exfiltrationdenial of servicediscorddistributed attacksftp brute forcegame designgame developmentgame publishinggaminggaming industrygaming platformsgaming technologyhttp brute forcehydra attackindicatorlink injectionlink obfuscationlogin attacklogin attemptsmalicious softwaremalwaremalware distributionmalware phishingmedusa attackmobile gamingnetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scannorth americaphishing attackphishing kitphishing-databaseprocess injectionprotocol exploitationrdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedrobloxscamsservice enumerationsmb scanningsmtp brute forcesocial engineeringssh attacksteamsyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1486t1496t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatudp scanunited statesvideo gamesvulnerability scan

Activity Timeline

1 total obs
Mar 26Mar 26

Threat Activity Heatmap

· Peak: 2026-03-26
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **dzcord.xyz** has emerged as a significant indicator of compromise (IOC) associated with botnet and malware activities, first observed on June

Threat ScoreHigh Risk
73
SIGNAL
Signal Score
73%
Confidence
7
Reports
First seenJun 8, 2022
Last seenMar 26, 2026

VirusTotal

Not checked

WHOIS

description
For POC
domain rank
-1
raw
Create date: 2022-06-06 Domain name: dzcord.xyz Domain registrar id: 1606 Domain registrar url: http://www.reg.ru Expiry date: 2023-06-06 Name server 1: cash.ns.cloudflare.com Name server 2: sky.ns.cloudflare.com Query time: 2022-06-08 14:44:58 Registrant address: 3267309318f7846c Registrant city: 3267309318f7846c Registrant company: 05317b600be146d7 Registrant country: Russian Federation Registrant email: 3267309318f7846cs@ Registrant fax: 3267309318f7846c Registrant name: 05317b600be146d7 Registrant phone: 3267309318f7846c Registrant state: 1e2b0d669292a22f Registrant zip: 3267309318f7846c Update date: 2022-06-07
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 2 months ago
Appeared in 7 threat reports