DomainMediumSignal 49/100

`e551004.cc`

Location

Hong Kong

First Seen

Dec 11, 2024

Last Seen

Jun 4, 2026

Dec 11

First Seen

550d ago

Jun 4

Last Seen

10d ago

Reports

source reports

49%

Confidence

medium

Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

49%

Signal Score

49 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

45 techniques

Feed Intelligence Summary

13 reports49% confidence

Source reports

49%

Confidence score

Category tags

abuseaccess controlaccount discoveryaccount profilingaccount takeoveractive scanactive scanningasiaattachment basedattachment phishingattackauthentication attackbad reputationbecbotnetbotnet activitybrand impersonationbrute forcebusiness email compromisec2command & controlcommand and controlcompromised websitecredential accesscredential harvestingcredential harvesting phishingcredential phishingcredential stuffingcredential theftdata exfiltrationdata store exposureddosdenial of servicedgadistributed attacksexploitation activityfinancefraudftp brute forcehong konghttp brute forcehydra attackidentity & access exploitationindicatorinjection activityioclink injectionlink obfuscationlink redirectionlink redirection phishinglogin attacklogin attemptsmalicious activitymalicious linkmalicious linksmalicious softwaremalicious websitemalwaremalware deliverymalware delivery phishingmalware distributionmalware phishingmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing campaign detectionphishing kitphishing-databaseprocess injectionprotocol exploitationransomwarerdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedscams & fraudsecurity policyservice enumerationservice scansmb scanningsmtp brute forcesocial engineeringspearphishingssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1539t1563t1565t1566t1566.001t1566.002t1566.003t1567t1567.001t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat actorthreat intelligencethreat preventiontor nodeudp scanvulnerability scanweb security

Activity Timeline

1 total obs

Jun 4Jun 4

Threat Activity Heatmap

· Peak: 2026-06-04

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Minimal

3mo

Minimal

Threat ScoreMedium Risk

SIGNAL

Signal Score

49%

Confidence

Reports

First seenDec 11, 2024

Last seenJun 4, 2026

VirusTotal

Not checked

WHOIS

registrar: Gname.com Pte. Ltd.
description: LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
domain rank: -1
raw: Admin City: Redacted for privacy Admin Country: Redacted for privacy Admin Organization: Redacted for privacy Admin Postal Code: Redacted for privacy Admin State/Province: Redacted for privacy Creation Date: 2024-07-20T07:06:28Z DNSSEC: unsigned Domain Name: E551004.CC Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: A.SHARE-DNS.COM Name Server: B.SHARE-DNS.NET Registrant City: ddb75a553547a419 Registrant Country: PH Registrant Email: d0067b942f253622s@ Registrant Fax: ddb75a553547a419 Registrant Name: ddb75a553547a419 Registrant Organization: ddb75a553547a419 Registrant Phone: ddb75a553547a419 Registrant Postal Code: ddb75a553547a419 Registrant State/Province: f12cec4c33d0b4b8 Registrant Street: ddb75a553547a419 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +65.31581931 Registrar Abuse Contact Phone: +65.65189986 Registrar IANA ID: 1923 Registrar Registration Expiration Date: 2025-07-20T07:06:28Z Registrar URL: http://www.gname.com Registrar URL: www.gname.com Registrar WHOIS Server: whois.gname.com Registrar: Gname.com Pte. Ltd. Registry Domain ID: 201715565_DOMAIN_CC-VRSN Registry Expiry Date: 2025-07-20T07:06:28Z Registry Registrant ID: Redacted for privacy Tech City: Redacted for privacy Tech Country: Redacted for privacy Tech Organization: Redacted for privacy Tech Postal Code: Redacted for privacy Tech State/Province: Redacted for privacy Updated Date: 2024-07-20T07:06:28Z Updated Date: 2025-03-16T04:12:29Z
references: https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
subdomains count: 0

`e551004.cc`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy