DomainHighVerifiedSignal 37/100

`ecowordpress.com`

First Seen

Dec 30, 2024

Last Seen

Mar 9, 2026

Dec 30

First Seen

537d ago

Mar 9

Last Seen

103d ago

Reports

source reports

37%

Confidence

high

Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

37%

Signal Score

37 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

45 techniques

Feed Intelligence Summary

5 reports37% confidence

Source reports

37%

Confidence score

Category tags

active scanningattachment phishingauthentication attackbecbec attackbotnetbrand impersonationbrute forcebusiness email compromisebusiness_email_compromisecommand and controlcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftcredential_harvestingdata exfiltrationdenial of servicedistributed attacksemail-based attackfraudulent websiteftp brute forcehttp brute forcehydra attackindicatorinitial accessiocslink injectionlink manipulationlink obfuscationlogin attacklogin attemptsmalicious attachmentmalicious attachmentsmalicious domainmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing campaignphishing-databaseprocess injectionprotocol exploitationrdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedservice enumerationsmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1552.001t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1588.002t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat intelligence feedthreat_actor_activityudp scanvulnerability scanweb securitywhaling attack

Activity Timeline

1 total obs

Mar 9Mar 9

Threat Activity Heatmap

· Peak: 2026-03-09

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Intelligence SummaryAI Generated

The domain **ecowordpress.com** has emerged as a significant indicator of compromise (IOC) associated with multiple cyber threats, including botnet activity, malware distribution, and phishing campaigns. First observed on December

Threat ScoreLow Risk

SIGNAL

Signal Score

37%

Confidence

Reports

First seenDec 30, 2024

Last seenMar 9, 2026

Verified IOC

VirusTotal

Not checked

WHOIS

registrar: NameSilo, LLC
description: For POC
domain rank: -1
raw: Creation Date: 2015-05-21T16:20:01Z DNSSEC: unsigned Domain Name: ECOWORDPRESS.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: NS1.DNSOWL.COM Name Server: NS2.DNSOWL.COM Name Server: NS3.DNSOWL.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.4805240066 Registrar IANA ID: 1479 Registrar URL: http://www.namesilo.com Registrar WHOIS Server: whois.namesilo.com Registrar: NameSilo, LLC Registry Domain ID: 1931058624_DOMAIN_COM-VRSN Registry Expiry Date: 2025-05-21T16:20:01Z Updated Date: 2024-05-22T07:20:58Z
subdomains count: 1

`ecowordpress.com`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey