DomainMediumSignal 87/100
get-folder-runtime-harbor.courses
Location
BrazilFirst Seen
May 15, 2026
Last Seen
May 22, 2026
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
87%
Signal Score
87 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
8 reports87% confidence
8
Source reports
87%
Confidence score
Category tags
abusech-threatfox-c2carmasciibad reputationbashblock-or-filter-listbotnet activitybrazilbrute forcec2command & controlddosddosagentdocdocxdropped-by-amadeydropped-by-phorpiexdropped-by-remusstealerelfexeexecutable fileexploitation activityhtaibrepindicatorinfostealeriocloadermacmacosmalwaremalware_distributionmanual-collectionmedium-riskmipsmiraimozinetworkopendirpassword-protectedpassword:toolkeeppowershellpythonremusstealerresearchedrustystealerscams & fraudshsouth americastealcstealertargeting databasetype osintua-wgetzip
Activity Timeline
May 22May 22
Threat Activity Heatmap
· Peak: 2026-05-22LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **get-folder-runtime-harbor.courses** has emerged as a significant indicator of compromise (IOC) linked to botnet activities and command-and-control (C
Threat ScoreHigh Risk
87
SIGNAL
Signal Score
87%
Confidence
8
Reports
First seenMay 15, 2026
Last seenMay 22, 2026
VirusTotal
Not checked
WHOIS
- description
- Domain name that delivers a malware payload
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 26 days ago · Last seen 19 days ago
Appeared in 8 threat reports