IOC Radar
DomainMediumSignal 49/100

edisonwencpa.ca

Location
United StatesUnited States
First Seen
Dec 9, 2020
Last Seen
Mar 31, 2026
Dec 9
First Seen
2012d ago
Mar 31
Last Seen
74d ago
7
Reports
source reports
49%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
49%
Signal Score
49 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

34 techniques

Feed Intelligence Summary

7 reports49% confidence
7
Source reports
49%
Confidence score
Category tags
active scanactive scanningauthentication attackbotnetbotnet activitybrute forcecommand and controlcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosdenial of servicedistributed attacksexploitation activityftp brute forcehttp brute forcehydra attackidentity & access exploitationindicatorinjection activitylogin attacklogin attemptsmalicious softwaremalwaremedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scannorth americaphishingphishing attackprocess injectionprotocol exploitationransomwarerdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedservice enumerationservice scansmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1190t1486t1496t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1589t1589.002t1592t1595t1595.001t1595.002t1595.003tcp scantcp scanningtelnet threatudp scanunited statesvulnerability scan

Activity Timeline

1 total obs
Mar 31Mar 31

Threat Activity Heatmap

· Peak: 2026-03-31
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain edisonwencpa.ca has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats, including botnet activity, malware distribution, phishing campaigns, and ransomware attacks. First observed on December

Threat ScoreMedium Risk
49
SIGNAL
Signal Score
49%
Confidence
7
Reports
First seenDec 9, 2020
Last seenMar 31, 2026

VirusTotal

Not checked

WHOIS

registrar
Tucows.com Co.
description
For POC
domain rank
-1
raw
Admin City: Calgary Admin Country: CA Admin Email: [email protected] Admin Organization: Edison Wen Professional Corporation Admin Postal Code: T2E6Z3 Admin State/Province: AB Creation Date: 2023-05-11T14:51:21Z DNSSEC: unsigned Domain Name: edisonwencpa.ca Domain Status: pendingDelete https://icann.org/epp#pendingDelete Domain Status: redemptionPeriod https://icann.org/epp#redemptionPeriod Domain Status: serverHold https://icann.org/epp#serverHold Domain Status: serverRenewProhibited https://icann.org/epp#serverRenewProhibited Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited Name Server: ns10.wixdns.net Name Server: ns11.wixdns.net Registrant City: 4e832ed31280da77 Registrant Country: CA Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: 3432650ec337c945 Registrant Name: a52f91c6e63b3ee5 Registrant Organization: ed5ec06db8df3cb0 Registrant Phone Ext: 3432650ec337c945 Registrant Phone: 49139d992778cfa2 Registrant Postal Code: b6dc0b486dbb1c91 Registrant State/Province: a188a8e77b65ac95 Registrant Street: 2c7d6382e1ace33b Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.4165350123 Registrar IANA ID: not applicable Registrar URL: https://help.opensrs.com/hc/en-us Registrar WHOIS Server: whois.ca.fury.ca Registrar: Tucows.com Co. Registry Admin ID: 109455698-CIRA Registry Domain ID: 109455642-CIRA Registry Expiry Date: 2025-05-11T14:51:21Z Registry Registrant ID: 109455638-CIRA Registry Tech ID: 109455640-CIRA Tech City: Calgary Tech Country: CA Tech Email: [email protected] Tech Organization: Edison Wen Professional Corporation Tech Postal Code: T2E6Z3 Tech State/Province: AB Updated Date: 2025-06-21T07:32:38Z
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 2 months ago
Appeared in 7 threat reports