IOC Radar
DomainMediumSignal 42/100

i2apm.org

Location
United KingdomUnited Kingdom
First Seen
Apr 17, 2026
Last Seen
Apr 24, 2026
Apr 17
First Seen
58d ago
Apr 24
Last Seen
51d ago
4
Reports
source reports
42%
Confidence
medium
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
42%
Signal Score
42 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

4 reports42% confidence
4
Source reports
42%
Confidence score
Category tags
active scaneuropeindicatoripv4networkresearchedunited kingdom

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
42
SIGNAL
Signal Score
42%
Confidence
4
Reports
First seenApr 17, 2026
Last seenApr 24, 2026

VirusTotal

Not checked

WHOIS

registrar
Mesh Digital Limited
description
HUMAN’s Satori Threat Intelligence and Research Team has identified a novel ad fraud, social engineering, and scareware threat dubbed Pushpaganda. This operation, named for push notifications central to the scheme, generates invalid organic traffic from real mobile devices by tricking users into subscribing to enabling notifications that presented alarming messages.
domain rank
-1
raw
Creation Date: 2015-08-20T09:34:41Z DNSSEC: unsigned Domain Name: i2apm.org Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited Name Server: paloma.ns.cloudflare.com Name Server: tosana.ns.cloudflare.com Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +44.1483304030 Registrar IANA ID: 1390 Registrar URL: http://www.domainmonster.com Registrar WHOIS Server: http://whois.meshdigital.com Registrar: Mesh Digital Limited Registry Domain ID: REDACTED Registry Expiry Date: 2026-08-20T09:34:41Z Updated Date: 2025-10-04T09:35:28Z
references
IOCs.2026.csv, https://www.humansecurity.com/learn/resources/satori-threat-intelligence-alert-pushpaganda-manipulates-google-discovery-feeds-with-ai-generated-content-to-spread-malicious-notifications/
subdomains count
2

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 4 threat reports