DomainMediumSignal 40/100
ebayairlogistic.com
First Seen
Mar 13, 2023
Last Seen
Jun 6, 2026
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
8 reports40% confidence
8
Source reports
40%
Confidence score
Category tags
active scanactive scanningattachment phishingauthentication attackbotnetbotnet activitybrand impersonationbrute forcebusiness email compromisecommand and controlcredential accesscredential harvestingcredential harvesting phishingcredential phishingcredential stuffingcredential theftdata exfiltrationdata store exposureddosdenial of servicedistributed attacksexploitation activityftp brute forcehttp brute forcehydra attackidentity & access exploitationindicatorinjection activitylink injectionlink manipulationlink redirectionlink redirection phishinglogin attacklogin attemptsmalicious linkmalicious softwaremalwaremalware deliverymalware delivery phishingmalware distributionmalware phishingmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing-databaseprocess injectionprotocol exploitationransomwarerdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedsecurity awarenessservice enumerationservice scansmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204.001t1486t1496t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatudp scanvulnerability scan
Activity Timeline
Jun 6Jun 6
Threat Activity Heatmap
· Peak: 2026-06-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain ebayairlogistic.com has emerged as a significant indicator of compromise (IOC) in the cybersecurity landscape, first observed on March
Threat ScoreLow Risk
40
SIGNAL
Signal Score
40%
Confidence
8
Reports
First seenMar 13, 2023
Last seenJun 6, 2026
VirusTotal
Not checked
WHOIS
- description
- LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
- domain rank
- -1
- raw
- Administrative city: Phoenix Administrative country: United States Administrative email: [email protected] Administrative state: AZ Create date: 2023-02-22 00:00:00 Domain name: ebayairlogistic.com Domain registrar id: 1479 Domain registrar url: https://www.namesilo.com/ Expiry date: 2024-02-23 00:00:00 Name server 1: tadeo.ns.cloudflare.com Name server 2: nelly.ns.cloudflare.com Query time: 2023-02-25 03:30:18 Registrant city: 7a96e04d2a2490b3 Registrant company: 6c109e8eed83f43c Registrant country: United States Registrant email: [email protected] Registrant name: 1f8f4166599d23ee Registrant phone: 6ac4fd1bbf9bd8f0 Registrant state: e1c7c1911395a3cf Registrant zip: c692e0cb8851b160 Technical city: Phoenix Technical country: United States Technical email: [email protected] Technical state: AZ Update date: 2023-02-23 00:00:00
- references
- https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen 9 days ago
Appeared in 8 threat reports