IOC Radar
DomainLowSignal 36/100

fnva.cloud

Location
AlbaniaAlbania
First Seen
May 18, 2025
Last Seen
May 25, 2025
May 18
First Seen
405d ago
May 25
Last Seen
398d ago
2
Reports
source reports
36%
Confidence
low
Found in 2 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
36%
Signal Score
36 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

35 techniques

Feed Intelligence Summary

2 reports36% confidence
2
Source reports
36%
Confidence score
Category tags
102n122n3px centerabuseactive scanningafghanistanai speraalbaniaangolaapacheapache licenseapiintegrationsapikeyappcontainerarialarmeniaarrayarticleasiaassetipreportassetsearchattackautoplayayafunctionazazazaz09bahamasbangladeshbedabelarusbigcardbigintbodybooleanbotnetbotswanabrrbbrute force attackbyungtak kangcakescanvascfunctionchadcheck accesschristchromeextensionclassclick-based attackclustercode injectioncolorcommand and controlcompanycompany nameconfigcongocontextcookiecovercredential accesscredential harvestingcredential stuffingcriminal ipcubacure53cvedetailmodalcvoidcyafunctiondarkdarkwebdata exfiltrationdatasetdddddecoy systemdigital signaturedirectdisabledistributed attacksdowndropdukeelementem15embedencrypterrorestoniaeuropeevoidexploiteyafunctionfailfefcfcfff urlfillerfragmentfull errorfunctionfxybfyafunctiongeneratorgggggooglegoogle logogoogle sansgoogle tag managergtmguineagyafunctionheadheadersheatmaplayerhmmsshooksuseaxioshostname enumerationhttpshuy kanghyafunctionhybridiframeimagesearchimmerindicatorindonesiainfoinformation gatheringinformation technologyinjectioninsertinternal serverintlinvalid ipinvalid maskipv4 cidripv6 cidriqafunctionislandsit infrastructurejob titlekeygenkimsukyklotsaknowledgesearchkqafunctionkvoidlabellazarusleftlegendlicenselink1link2localeloginlookuplqafunctionmainmalicious activitymalicious linksmalicious softwaremalwaremalware signingmap scalemapsetmarkermarsmathmediamercurymetadata analysismexicomit licensemobilemobile securitymoderatemozimozilla publicmqafunctionn colorn inputnbwinetmasknetworknetwork scanningnevadanextnexturlnfunctionnordnorth americanoticontainernotifynulltnumbernvoidobjectoctopusopenoverlayviewsafeovoidpanamaparaguaypassword attackspatchespcidsslogopersonpfunctionphishingpinletplutopolicyportportalprocess injectionproductpromiseprotection actproxypythonrasterrecaptchareconnaissancerefractorrefreshregexpremote servicesreportresearchedresetemailinputrfunctionrobotorvoidsafesaharasamoasansscalescanscannerscriptscripting attacksscrollsearchscantabsserver internalservicesiteslovakiasocial engineeringsocial media securitysoftware developmentsoftware integritysouth americasouth koreaspansprbuj wyczyssssstopstreet viewstringstronasupply chainsvoidswipersymbolt1021t1055t1059.007t1064t1071t1071.001t1110.001t1110.002t1110.003t1110.004t1188t1190t1195t1195.002t1203t1204.001t1204.002t1486t1496t1499.002t1499.003t1554.001t1554.003t1565t1566.001t1566.002t1566.003t1566.004t1588t1588.006t1589.001t1595.001t1595.002t1595.003t1608termsoltextthe authorthird-party librariesthisthis softwarethreat actorthreat intelligencetitantitletnowtointtokentoolstopnavigatorttfbtwittertypetypeoftypeof cryptotypeof definetypeof etypeof ltypeof moduletypeof mscryptotypeof ntypeof otypeof ptypeof rtypeof requiretypeof selftypeof symboltypeof ttypeof windowu002fu0329u1cdau1cf2u200c200du20b9u25ccukraineurlsearchparamsuruguayuser executionvectorvenusversionvoidvulnvulnerabilitywarningweakmapweb attackweb exploitationweb securitywebsitewhoiswin32 malwarewindowwindows malwareworkerxdfunctionxfunctionxsszofunctionzvoid

Activity Timeline

1 total obs
May 25May 25

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

The domain **fnva.cloud**, originating from Albania, has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports. First observed on May

Threat ScoreLow Risk
36
SIGNAL
Signal Score
36%
Confidence
2
Reports
First seenMay 18, 2025
Last seenMay 25, 2025

VirusTotal

Not checked

WHOIS

description
Here is the full text of the CategorySelectContainer, created with the help of a specially-designed design. £3.5m (1.6m) in the form of "banner-explorer"

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 1 year ago
Appeared in 2 threat reports