IOC Radar
DomainHighVerifiedSignal 67/100

espionwa.com

First Seen
Apr 17, 2026
Last Seen
May 6, 2026
Apr 17
First Seen
59d ago
May 6
Last Seen
40d ago
6
Reports
source reports
67%
Confidence
high
15/91
VirusTotal
detections
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
67%
Signal Score
67 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

6 reports67% confidence
6
Source reports
67%
Confidence score
Category tags
blocklistcryptocryptocurrencydrainerfraudindicatornetworkphishingresearchedscamscams & fraud

Activity Timeline

1 total obs
May 6May 6

Threat Activity Heatmap

· Peak: 2026-05-06
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain `espionwa.com` represents a significant and active threat, flagged by multiple reputable threat intelligence feeds with a high confidence score of 67.44. This Indicator of Compromise (IOC) is strongly associated with malicious activities such as phishing and potential malware distribution, as evidenced by its inclusion in lists like 'Phishing Army Extended Domain List' and 'Malware Filter - Phishing List'. If this domain is accessed or present within the organizational environment, it…

Threat ScoreMedium Risk
67
SIGNAL
Signal Score
67%
Confidence
6
Reports
First seenApr 17, 2026
Last seenMay 6, 2026
Verified IOC

VirusTotal

15/ 91vendors flagged
16% detection rateJun 3, 2026

WHOIS

registrar
Global Domain Group LLC
description
Real-time feed of phishing, crypto drainer, and scam domains detected by PhishDestroy (phishdestroy.io). Updated hourly. 108K+ domains tracked, 55K+ currently active. Source: github.com/phishdestroy/destroylist
domain rank
-1
raw
Creation Date: 2025-07-08T14:54:59Z DNSSEC: unsigned Domain Name: ESPIONWA.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: NS1.GLOBALDOMAINGROUP.COM Name Server: NS2.GLOBALDOMAINGROUP.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1 (805) 394-3992 Registrar IANA ID: 3956 Registrar URL: http://www.globaldomaingroup.com Registrar WHOIS Server: whois.globaldomaingroup.com Registrar: Global Domain Group LLC Registry Domain ID: 2998551529_DOMAIN_COM-VRSN Registry Expiry Date: 2026-07-08T14:54:59Z Updated Date: 2025-07-08T14:55:00Z
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 month ago · Last seen 1 month ago
Appeared in 6 threat reports