DomainMediumSignal 31/100

`getdbecausehub.com`

Location

China

First Seen

Sep 9, 2025

Last Seen

Jun 5, 2026

Sep 9

First Seen

274d ago

Jun 5

Last Seen

5d ago

Reports

source reports

31%

Confidence

medium

Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

31%

Signal Score

31 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

47 techniques

Feed Intelligence Summary

8 reports31% confidence

Source reports

31%

Confidence score

Category tags

active scanningadvanced persistent threataerospace & defenseapt groupasiabrute forcechinachina choppercivil servicescode executioncommand and controlcommand executioncommunication technologiescommunications networkscontractor ecosystemcredential accesscredential stuffingcritical infrastructurecyber espionagecyber threat intelligencedata breachdefensedefense contractingdefense evasiondefense logisticsdefense systemsdefense technologydemodexdepartmentdgadnsemergency servicesenergyenergy distributionenergy systemsexfiltrationfinancial systemsforeignftp brute forcegovernment facilitiesgovernment technologygunra ransomwarehttp brute forceindicatorinfrastructure acquisitionreconnaissanceinfrastructure targetinginitial accessjusticeknownlateral movementlockbitlog analysislong-term accesslong-term persistencelumma staelermalware: china choppermalware: demodexmalware: sigroutermiamimilitary operationsmobile carriersmobile networksnation-state actornational securitynetworknetwork intrusionnetwork probingnetwork scanningnorth americaoil & gaspassword attackpersistence: long-termpersistent threatphishingpotential intrusionpower generationpower systemspublic administrationpublic infrastructurepublic policyreconnaissancerednovemberregulatory agenciesremote accessremote servicesrenewable energyresearchedsalt typhoonscanning activityservice enumerationsigintsoftware exploitationssh attackstate securityt1003t1014t1021t1021.001t1027t1036t1041t1046t1053t1056t1059t1059.001t1068t1071t1071.001t1071.004t1076t1078t1082t1083t1105t1110t1110.002t1190t1195t1203t1210t1547t1555t1563t1566t1567.002t1568t1571t1573t1583t1583.001t1586t1587.001t1589.002t1590.001t1595t1595.001t1595.002t1595.003t1601.002t1602tcp scantelecom servicestelecommunicationsthreat actor: chinatransportation networkstyphoonudp scanunauthorized access attemptunc4841united statesvoipwater systemsxworm campaign

Activity Timeline

1 total obs

Jun 5Jun 5

Threat Activity Heatmap

· Peak: 2026-06-05

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

Minimal

30d

Minimal

3mo

Minimal

Intelligence SummaryAI Generated

The domain **getdbecausehub.com** has been identified as an active indicator of compromise (IOC) associated with sophisticated cyber threats originating from China. First observed on September

Threat ScoreLow Risk

SIGNAL

Signal Score

31%

Confidence

Reports

First seenSep 9, 2025

Last seenJun 5, 2026

VirusTotal

Not checked

WHOIS

registrar: GMO Internet, Inc.
creation date: 2026-04-06T01:48:17
expiration date: 2027-04-06T01:48:17
updated date: 2026-04-06T01:48:17
name servers: NS11.VALUE-DOMAIN.COM, NS12.VALUE-DOMAIN.COM, NS13.VALUE-DOMAIN.COM
country: JP
emails: [email protected], [email protected]
org: Whois Privacy Protection Service by VALUE-DOMAIN
status: ok https://icann.org/epp#ok

`getdbecausehub.com`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy