DomainMediumSignal 44/100

`frankwhales.shop.co`

First Seen

Jan 19, 2025

Last Seen

May 1, 2026

Jan 19

First Seen

519d ago

May 1

Last Seen

52d ago

Reports

source reports

44%

Confidence

medium

Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

44%

Signal Score

44 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

12 techniques

Feed Intelligence Summary

3 reports44% confidence

Source reports

44%

Confidence score

Category tags

botnetcommand and controlcredential harvestingdata exfiltrationdistributed attacksindicatorinfrastructure acquisitionreconnaissancemalicious softwaremalwaremanualnetworkphishing attackprocess injectionresearchedsocial engineeringt1055t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001

Activity Timeline

1 total obs

May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Intelligence SummaryAI Generated

The domain **frankwhales.shop.co** has been identified as a critical indicator of compromise (IOC) associated with botnet and malware activities. First observed on January

Threat ScoreMedium Risk

SIGNAL

Signal Score

44%

Confidence

Reports

First seenJan 19, 2025

Last seenMay 1, 2026

VirusTotal

Not checked

WHOIS

registrar: InternetX GmbH
creation date: 2010-02-24T22:45:27
expiration date: 2027-02-23T23:59:59
updated date: 2026-04-10T00:22:05
name servers: NS1.SUBDOMAIN.NET, NS2.SUBDOMAIN.NET
emails: [email protected]
status: ok https://icann.org/epp#ok

`frankwhales.shop.co`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey