IOC Radar
DomainHighVerifiedSignal 69/100

getkira.info

Location
United StatesUnited States
First Seen
Apr 15, 2025
Last Seen
Mar 24, 2026
Apr 15
First Seen
424d ago
Mar 24
Last Seen
81d ago
6
Reports
source reports
69%
Confidence
high
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Feed Intelligence Summary

6 reports69% confidence
6
Source reports
69%
Confidence score
Category tags
ai generated spamai spamakiraakirabotanti-detectionautomated attackblackbastabotnetbotnet activitybrute force attackcaptchacaptcha bypasscommand and controlcommunication technologiescontent injectioncredential accesscredential stuffingcyber threatsdata exfiltrationdistributed attacksevasionevasion techniquesfinancefinancial servicesindicatorinformation technologyit infrastructuremalicious softwaremalwaremobile carriersmobile networksmodelnetworknorth americapassword attacksprocess injectionpythonpython botreamazereamaze api abuseresearchedseo spamshadowsmartproxysoftware developmentspam bott1027t1036t1055t1056t1059t1071t1071.001t1071.004t1078t1090t1110.001t1110.002t1110.003t1110.004t1134t1140t1199t1486t1496t1497t1499.001t1499.002t1499.003t1547t1565t1566t1566.001t1574t1583.001t1588telecom servicestelecommunicationsunited statesvoiceweb applicationweb injection

Activity Timeline

1 total obs
Mar 24Mar 24

Threat Activity Heatmap

· Peak: 2026-03-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
6
Reports
First seenApr 15, 2025
Last seenMar 24, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

description
Akirabot is a sophisticated Python framework has successfully targeted websites using advanced techniques to bypass security measures and deliver AI-generated spam.
domain rank
-1
raw
Administrative city: REDACTED FOR PRIVACY Administrative country: Redacted For Privacy Administrative state: REDACTED FOR PRIVACY Create date: 2024-12-13 00:00:00 Domain name: getkira.info Domain registrar id: 1068 Domain registrar url: whois.namecheap.com Expiry date: 2025-12-13 00:00:00 Name server 1: dns2.namecheaphosting.com Name server 2: dns1.namecheaphosting.com Query time: 2024-12-15 02:04:37 Registrant address: 1f8f4166599d23ee Registrant city: 1f8f4166599d23ee Registrant company: 4b7a0912c26a13e2 Registrant country: Iceland Registrant name: 1f8f4166599d23ee Registrant state: 3e0204199d8ebf9c Registrant zip: 1f8f4166599d23ee Technical city: REDACTED FOR PRIVACY Technical country: Redacted For Privacy Technical state: REDACTED FOR PRIVACY Update date: 2024-12-13 00:00:00
references
https://www.sentinelone.com/labs/akirabot-ai-powered-bot-bypasses-captchas-spams-websites-at-scale, April 11th, 2025 - CryptoGen Cyber Threat Intelligence Advisory #6914 - AkiraBot Spammed Websites by using Evasion Techniques.
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 year ago · Last seen 2 months ago
Appeared in 6 threat reports