IOC Radar
DomainMediumSignal 55/100

host-file-file4.com

Location
GermanyGermany
First Seen
Dec 3, 2021
Last Seen
Apr 6, 2026
Dec 3
First Seen
1660d ago
Apr 6
Last Seen
76d ago
7
Reports
source reports
55%
Confidence
medium
3/91
VirusTotal
detections
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
55%
Signal Score
55 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

23 techniques

Feed Intelligence Summary

7 reports55% confidence
7
Source reports
55%
Confidence score
Category tags
access controlactive scananna paulabotnetbotnet activitybrute forcec2command & controlcommand and controlcompromised hostcompromised infrastructurecredential harvestingcredential stuffingdata exfiltrationdata store exposuredistributed attackseuropeexploitation activityfrom emailgermanyheadersidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityiocmalicious softwaremalspam emailmalwaremanualmsi filenetworkphishingphishing attackprocess injectionransomwareresearchedsauronsecurity policyself-signedsocial engineeringspamt1001t1001.001t1005t1041t1055t1071t1071.001t1105t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1568t1568.002t1571t1573t1573.001t1587.001t1590.001threat actorthreat preventiontor nodezip archive

Activity Timeline

1 total obs
Apr 6Apr 6

Threat Activity Heatmap

· Peak: 2026-04-06
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
55
SIGNAL
Signal Score
55%
Confidence
7
Reports
First seenDec 3, 2021
Last seenApr 6, 2026

VirusTotal

3/ 91vendors flagged
3% detection rateJun 8, 2026

WHOIS

registrar
Stichting Registrar of Last Resort Foundation
description
Command and Control domains for Malware. These domains are extracted from a number of sources, and are suspicious.
domain rank
-1
raw
Creation Date: 2024-05-28T22:24:29Z DNSSEC: unsigned Domain Name: HOST-FILE-FILE4.COM Domain Status: redemptionPeriod https://icann.org/epp#redemptionPeriod Name Server: DE-A.SINKHOLE.SHADOWSERVER.ORG Name Server: DE-B.SINKHOLE.SHADOWSERVER.ORG Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +31.206717452 Registrar IANA ID: 2482 Registrar URL: http://www.rolr.eu Registrar WHOIS Server: whois.rolr.uk Registrar: Stichting Registrar of Last Resort Foundation Registry Domain ID: 2885599362_DOMAIN_COM-VRSN Registry Expiry Date: 2025-05-28T22:24:29Z Updated Date: 2025-07-09T13:42:15Z
references
2021-09-21-Curriculo-IOCs.txt
subdomains count
3

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 2 months ago
Appeared in 7 threat reports