IOC Radar
DomainMediumSignal 13/100

host-world.com

Location
NetherlandsNetherlands
First Seen
Aug 14, 2025
Last Seen
May 8, 2026
Aug 14
First Seen
301d ago
May 8
Last Seen
34d ago
1
Reports
source reports
13%
Confidence
medium
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
13%
Signal Score
13 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Feed Intelligence Summary

1 report13% confidence
1
Source reports
13%
Confidence score
Category tags
active scanactive scanningbrute forcebrute force attackbrute-forcecredential accesscredential harvestingcredential stuffingddosddos attackdenial of serviceestoniaeuropeexploitation activityexploited hostfraud ordershackingidentity & access exploitationindicatornetherlandsnetworknlpassword attacksphishingphishing attackping of deathplpolandreconnaissanceresearchedscams & fraudscannersocial engineeringspamssh attackt1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003web app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 8May 8

Threat Activity Heatmap

· Peak: 2026-05-08
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **host-world.com** has been identified as an active indicator of compromise (IOC) associated with multiple malicious activities, including phishing, scanning, and spam campaigns. Originating from the Netherlands, this domain has been observed conducting active scans and brute force attacks, suggesting it may be part of a broader threat actor's infrastructure. First detected on August

Threat ScoreLow Risk
13
SIGNAL
Signal Score
13%
Confidence
1
Reports
First seenAug 14, 2025
Last seenMay 8, 2026

VirusTotal

Not checked

WHOIS

registrar
NAMECHEAP INC
creation date
2016-02-16T19:30:23
expiration date
2027-02-16T19:30:23
updated date
2026-02-14T20:10:26
name servers
DEAN.NS.CLOUDFLARE.COM, DEE.NS.CLOUDFLARE.COM
country
IS
emails
[email protected], [email protected]
org
Privacy service provided by Withheld for Privacy ehf
status
clientTransferProhibited https://icann.org/epp#clientTransferProhibited

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 10 months ago · Last seen 1 month ago
Appeared in 1 threat report