DomainHighVerifiedSignal 51/100
harvest-finance.sbs
Location
United StatesFirst Seen
Jun 30, 2025
Last Seen
Jul 5, 2025
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
51%
Signal Score
51 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
5 reports51% confidence
5
Source reports
51%
Confidence score
Category tags
credential harvestingcredential theftdata encryptionextortionindicatormalware distributionnetworknorth americaphishing attackransomwareresearchedsocial engineeringsystem disruptiont1189t1486t1490t1539t1566t1566.001t1566.002t1566.003t1593t1598united statesx/twitter
Activity Timeline
Jul 5Jul 5
Threat Activity Heatmap
· Peak: 2025-07-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **harvest-finance.sbs** has emerged as a critical indicator of compromise (IOC) linked to ransomware activities, first observed on June
Threat ScoreMedium Risk
51
SIGNAL
Signal Score
51%
Confidence
5
Reports
First seenJun 30, 2025
Last seenJul 5, 2025
Verified IOC
VirusTotal
Not checked
WHOIS
- domain rank
- -1
- raw
- Create date: 2025-04-04 00:00:00 Domain name: harvest-finance.sbs Domain registrar id: 1601 Domain registrar url: http://www.apiname.com Expiry date: 2026-04-04 00:00:00 Name server 1: nataly.ns.cloudflare.com Name server 2: arnold.ns.cloudflare.com Query time: 2025-04-05 11:39:56 Registrant company: b9d43b3ebfbecd2c Registrant country: Poland Registrant email: 29e2c061f3c9524es@ Registrant state: a10fe9b2c804ed6f Update date: 2025-04-04 00:00:00
- subdomains count
- 0
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 11 months ago · Last seen 11 months ago
Appeared in 5 threat reports