DomainHighVerifiedSignal 37/100

`ecsos.com.br`

First Seen

Jul 20, 2021

Last Seen

Mar 9, 2026

Jul 20

First Seen

1789d ago

Mar 9

Last Seen

96d ago

Reports

source reports

37%

Confidence

high

12/91

VirusTotal

detections

Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

37%

Signal Score

37 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

45 techniques

Feed Intelligence Summary

6 reports37% confidence

Source reports

37%

Confidence score

Category tags

active scanningattachment phishingauthentication attackbecbec attackbotnetbrand impersonationbrute forcebusiness email compromisebusiness_email_compromisecommand and controlcredential accesscredential harvestingcredential phishingcredential stuffingcredential theftcredential_harvestingdata exfiltrationdenial of servicedistributed attacksemail-based attackfraudulent websiteftp brute forcehttp brute forcehydra attackindicatorinitial accessiocslink injectionlink manipulationlink obfuscationlogin attacklogin attemptsmalicious attachmentmalicious attachmentsmalicious domainmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing campaignphishing-databaseprocess injectionprotocol exploitationrdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedservice enumerationsmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1552.001t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1588.002t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatthreat intelligence feedthreat_actor_activityudp scanvulnerability scanweb securitywhaling attack

Activity Timeline

1 total obs

Mar 9Mar 9

Threat Activity Heatmap

· Peak: 2026-03-09

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Intelligence SummaryAI Generated

This indicator of compromise (IOC), the domain `ecsos.com.br`, represents a significant threat primarily associated with phishing activities, as evidenced by its high threat score of 37.05 and explicit mentions across multiple threat intelligence feeds. If left unaddressed, this domain poses a direct risk of enabling credential harvesting, malware delivery, and other forms of social engineering that could lead to unauthorized access, data breaches, or financial fraud within the organization. The…

Threat ScoreLow Risk

SIGNAL

Signal Score

37%

Confidence

Reports

First seenJul 20, 2021

Last seenMar 9, 2026

Verified IOC

VirusTotal

12/ 91vendors flagged

13% detection rateJun 3, 2026

WHOIS

description: For POC
domain rank: -1
raw: changed: 20221208 changed: 20240424 country: BR created: 20110323 #8081385 created: 20141110 domain: ecsos.com.br dsstatus: 20250302 DSOK e-mail: [email protected] expires: 20270323 nic-hdl-br: THSLE16 nserver: a.sec.dns.br nserver: c.sec.dns.br status: published
subdomains count: 3

`ecsos.com.br`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy