DomainMediumSignal 100/100
hijx.xyz
Location
ItalyFirst Seen
May 19, 2025
Last Seen
Jun 6, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
10 reports99% confidence
10
Source reports
99%
Confidence score
Category tags
abuseaerospace & defenseapi callaptapt 28apt28australiabitcoinblockchainbotnetc servercivil servicescode executioncode injectioncommand and controlcommand executioncommodity contracts intermediationcommunication technologiescredential accesscredential harvestingcredential theftcross-site scriptingcrypto exchangecrypto miningcrypto walletcryptocurrencycvecyber intelligencedata encryptiondata exfiltrationdecentralized financedefensedefense contractingdefense logisticsdefense systemsdefense technologydigital currencydistributed attackseastern europeeseteset researcheuropeeurope/asiaexploitexploitationextortionfancy bearfigurefirstfleet managementfrancefreight servicesgovernment technologyhasheshordeimpactindicatorinfrastructure acquisitionreconnaissanceinhibit systemiocsitalylateral movementlojaxmalicious softwaremalwaremaritime transportmdaemonmilitary operationsmobile carriersmobile networksnational securitynetworkoperating systemoperation roundpresspaexecparispasspassenger transportationphishingphishing attackprocess injectionpsexecpublic administrationpublic infrastructurepublic policyrail transportransom demandransomhubransomwareransomware-as-a-serviceregulatory agenciesresearchedrussiasednitsiemsocial engineeringsofacysoftware exploitationspearphishingspypress cspypress.hordespypress.mdaemonspypress.roundcubespypress.zimbrastrongsystem disruptionsystem locationt1003t1003.001t1005t1018t1020t1021.001t1027t1027.003t1033t1041t1047t1053.005t1055t1056t1057t1059t1059.001t1059.003t1059.004t1059.007t1068t1069.001t1070t1070.001t1071t1071.001t1078t1078.002t1078.004t1082t1083t1087t1105t1106t1110t1112t1114t1114.001t1119t1120t1132t1133t1134t1134.001t1134.002t1134.004t1135t1140t1187t1189t1190t1192t1199t1203t1204t1204.001t1204.002t1218t1218.011t1486t1490t1496t1497t1499.002t1499.003t1539t1547.001t1556t1562.001t1562.004t1565t1566t1566.001t1566.002t1566.003t1566.004t1569.002t1574t1574.001t1583t1587t1587.001t1588t1588.002t1590.001t1595t1608.001t1614telecom servicestelecommunicationstipstransportation and warehousingtransportation infrastructuretransportation technologyukrainevanhelsingvanhelsing ransomware emulationvanhelsing ransomware simulationvulnerabilityweb exploitationwebmailwebmail server compromisewindows apixsszero-day exploitzero-day vulnerabilityzimbrazimbra exploit
Activity Timeline
Jun 6Jun 6
Threat Activity Heatmap
· Peak: 2026-06-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain hijx.xyz, originating from Italy, has emerged as a significant indicator of compromise (IOC) in the cybersecurity landscape, with activity first detected on May
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
10
Reports
First seenMay 19, 2025
Last seenJun 6, 2026
VirusTotal
Not checked
WHOIS
- description
- The full list of cybersecurity vulnerabilities, identified by researchers at the University of California, New York (UCL), has been released.. and it is expected to be published by the end of the year
- domain rank
- -1
- raw
- Create date: 2024-07-03 00:00:00 Domain name: hijx.xyz Domain registrar id: 303 Domain registrar url: https://publicdomainregistry.com Expiry date: 2025-07-03 00:00:00 Query time: 2024-07-04 09:56:15 Registrant company: 7bc26f5a5e70d417 Registrant country: Hungary Registrant email: f651612a2f356ad3s@ Registrant state: a1dd02b0618b1c0d
- subdomains count
- 1
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 4 days ago
Appeared in 10 threat reports