DomainMediumSignal 0/100
epp.navy.ddns.info
Location
ChinaFirst Seen
Jun 12, 2025
Last Seen
Jun 18, 2026
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Jun 18Jun 18
Threat Activity Heatmap
· Peak: 2026-06-18LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), `epp.navy.ddns.info`, has been explicitly whitelisted with a score of 0.0, indicating it is currently considered benign and poses no immediate threat. Its presence in threat intelligence feeds does not, by itself, suggest malicious activity or hostile behavior. Instead, this IOC has been identified and confirmed as a legitimate, non-malicious entity, likely a legitimate service or domain. Therefore, it does not warrant urgent containment or emergency response …
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenJun 12, 2025
Last seenJun 18, 2026
VirusTotal
Not checked
WHOIS
- description
- In this SentinelOne Labs investigation, researchers track a sophisticated China-linked threat actor relentlessly targeting high-value entities across multiple sectors. The report uncovers their evasive TTPs, custom malware tooling, and persistent intrusion attempts, providing critical IOCs (Indicators of Compromise) and defensive recommendations. A must-read for threat hunters and security teams defending against advanced persistent threats (APTs).
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 3 days ago
Appeared in 2 threat reports