IOC Radar
DomainMediumSignal 62/100

enhancedspice.click

Location
PolandPoland
First Seen
Jan 22, 2026
Last Seen
Jun 6, 2026
Jan 22
First Seen
149d ago
Jun 6
Last Seen
14d ago
7
Reports
source reports
62%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
62%
Signal Score
62 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Feed Intelligence Summary

7 reports62% confidence
7
Source reports
62%
Confidence score
Category tags
brute forcecompromised infrastructurecredential harvestingcredential stuffingeuropeidentity & access exploitationindicatormalicious domain disseminationmalwaremalware hostingnetworknorth americaphishphishingphishing attackpolandpolcertresearchedsocial engineeringt1105t1566t1566.001t1566.002t1566.003t1588t1588.002united states

Activity Timeline

1 total obs
Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **enhancedspice.click**, originating from Poland, has been identified as an active indicator of compromise (IOC) associated with both malware and phishing campaigns. First observed on January

Threat ScoreMedium Risk
62
SIGNAL
Signal Score
62%
Confidence
7
Reports
First seenJan 22, 2026
Last seenJun 6, 2026

VirusTotal

Not checked

WHOIS

description
See: https://cert.pl/en/warning-list/ (archived version here: https://web.archive.org/web/20231029161224/https://cert.pl/en/posts/2020/03/malicious_domains/)

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 14 days ago
Appeared in 7 threat reports