IOC Radar
DomainMediumSignal 77/100

getpropack.com

Location
PolandPoland
First Seen
Apr 15, 2026
Last Seen
Jun 5, 2026
Apr 15
First Seen
59d ago
Jun 5
Last Seen
9d ago
8
Reports
source reports
77%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
77%
Signal Score
77 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

8 reports77% confidence
8
Source reports
77%
Confidence score
Category tags
europeeurope/asiaindicatornetworkphishpolandpolcertresearchedturkey

Activity Timeline

1 total obs
Jun 5Jun 5

Threat Activity Heatmap

· Peak: 2026-06-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **getpropack.com** has been identified as an active indicator of compromise (IOC) associated with phishing campaigns originating from Poland. Security analysts should be aware that this domain was first observed on April

Threat ScoreHigh Risk
77
SIGNAL
Signal Score
77%
Confidence
8
Reports
First seenApr 15, 2026
Last seenJun 5, 2026

VirusTotal

Not checked

WHOIS

registrar
Automattic Inc.
description
See: https://cert.pl/en/warning-list/ (archived version here: https://web.archive.org/web/20231029161224/https://cert.pl/en/posts/2020/03/malicious_domains/)
domain rank
-1
raw
Admin City: Beaverton Admin Country: US Admin Email: [email protected] Admin Organization: Knock Knock WHOIS Not There, LLC Admin Postal Code: 97008-7105 Billing City: Beaverton Billing Country: US Billing Email: [email protected] Billing Organization: Knock Knock WHOIS Not There, LLC Billing Postal Code: 97008-7105 Creation Date: 2024-01-12T23:38:14Z DNSSEC: unsigned Domain Name: GETPROPACK.COM Domain Name: getpropack.com Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: NS1.GUZELHOSTING.COM Name Server: NS2.GUZELHOSTING.COM Name Server: ns1.guzelhosting.com Name Server: ns2.guzelhosting.com Registrant City: bbcf1eb983f6c3e1 Registrant Country: US Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: 3432650ec337c945 Registrant Name: 1f8f4166599d23ee Registrant Organization: 56b2bb6c96c46371 Registrant Phone Ext: 3432650ec337c945 Registrant Phone: f815444456566c45 Registrant Postal Code: f1463f7e9fefc2da Registrant State/Province: 3432650ec337c945 Registrant Street: e4ed95aa944a7132 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1 877 273-3049 Registrar Abuse Contact Phone: +1.8772733049 Registrar IANA ID: 1531 Registrar Registration Expiration Date: 2026-01-12T23:38:14Z Registrar URL: http://www.automattic.com/ Registrar URL: http://www.wordpress.com Registrar WHOIS Server: whois.sawbuck.com Registrar: Automattic Inc. Registry Admin ID: Not Available From Registry Registry Billing ID: Not Available From Registry Registry Domain ID: 2845739145_DOMAIN_COM-VRSN Registry Expiry Date: 2026-01-12T23:38:14Z Registry Registrant ID: Not Available From Registry Registry Tech ID: Not Available From Registry Tech City: Beaverton Tech Country: US Tech Email: [email protected] Tech Organization: Knock Knock WHOIS Not There, LLC Tech Postal Code: 97008-7105 Updated Date: 2025-03-27T21:35:37Z
subdomains count
1

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 9 days ago
Appeared in 8 threat reports