IOC Radar
DomainMediumSignal 65/100

eco-storia.ru

Location
Russian FederationRussian Federation
First Seen
May 20, 2024
Last Seen
Apr 7, 2026
May 20
First Seen
767d ago
Apr 7
Last Seen
80d ago
9
Reports
source reports
65%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
65%
Signal Score
65 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

45 techniques

Feed Intelligence Summary

9 reports65% confidence
9
Source reports
65%
Confidence score
Category tags
active scanactive scanningattachment phishingauthentication attackbecbec attackbotnetbotnet activitybrand impersonationbrute forcebusiness email compromisebusiness_email_compromisecommand and controlcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftcredential_harvestingdata exfiltrationdata store exposureddosdenial of servicedistributed attacksemail-based attackeurope/asiaexploitation activityfraudulent websiteftp brute forcehttp brute forcehydra attackidentity & access exploitationindicatorinitial accessinjection activityiocslink injectionlink manipulationlink obfuscationlogin attacklogin attemptsmalicious attachmentmalicious attachmentsmalicious domainmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing campaignphishing-databaseprocess injectionprotocol exploitationransomwarerdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedrussiarussian federationscams & fraudservice enumerationservice scansmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1552.001t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1588.002t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat intelligence feedthreat_actor_activitytor nodeudp scanvulnerability scanweb securitywhaling attack

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **eco-storia.ru**, originating from the Russian Federation, has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports. First observed on May

Threat ScoreMedium Risk
65
SIGNAL
Signal Score
65%
Confidence
9
Reports
First seenMay 20, 2024
Last seenApr 7, 2026

VirusTotal

Not checked

WHOIS

registrar
REGRU-RU
description
For POC
domain rank
-1
raw
Last updated on 2025-04-02T18:53:01Z created: 2019-02-08T08:00:50Z domain: ECO-STORIA.RU nserver: ns1.reg.ru. nserver: ns2.reg.ru. paid-till: 2026-02-08T08:00:50Z registrar: REGRU-RU source: TCI state: REGISTERED, DELEGATED, UNVERIFIED
references
https://malware-filter.gitlab.io/malware-filter/phishing-filter-domains.txt
subdomains count
2

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 2 months ago
Appeared in 9 threat reports