IOC Radar
DomainMediumSignal 50/100

ecosikhuk.org

Location
United StatesUnited States
First Seen
Apr 17, 2026
Last Seen
Apr 23, 2026
Apr 17
First Seen
57d ago
Apr 23
Last Seen
51d ago
4
Reports
source reports
50%
Confidence
medium
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

4 reports50% confidence
4
Source reports
50%
Confidence score
Category tags
active scanindicatoripv4networknorth americaresearchedunited states

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain ecosikhuk.org has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports, with activity observed between April

Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
4
Reports
First seenApr 17, 2026
Last seenApr 23, 2026

VirusTotal

Not checked

WHOIS

description
HUMAN’s Satori Threat Intelligence and Research Team has identified a novel ad fraud, social engineering, and scareware threat dubbed Pushpaganda. This operation, named for push notifications central to the scheme, generates invalid organic traffic from real mobile devices by tricking users into subscribing to enabling notifications that presented alarming messages.
domain rank
-1
raw
Create date: 2020-01-28 00:00:00 Domain name: ecosikhuk.org Domain registrar id: 1390.0 Domain registrar url: http://whois.meshdigital.com Expiry date: 2027-01-28 00:00:00 Name server 1: NS29.DOMAINCONTROL.COM Name server 2: NS30.DOMAINCONTROL.COM Query time: 2026-03-13 12:14:21 Registrant address: 05597c094630fffa Registrant city: a7319ae5e6c95df5 Registrant company: b46a98a26fe2fd9f Registrant country: United States Registrant email: [email protected] Registrant name: 80315b2e6ac1a801 Registrant phone: 6b12fe2f5588fb35 Registrant state: 30bdd2917a604c83 Registrant zip: d869d3b215ab9645 Technical city: Tempe Technical country: United States Technical email: [email protected] Technical state: Arizona Update date: 2026-03-12 00:00:00
references
IOCs.2026.csv, https://www.humansecurity.com/learn/resources/satori-threat-intelligence-alert-pushpaganda-manipulates-google-discovery-feeds-with-ai-generated-content-to-spread-malicious-notifications/
subdomains count
4

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 4 threat reports