DomainMediumSignal 56/100

`irs.gov.infrmatiion.com`

First Seen

Jan 9, 2022

Last Seen

Mar 9, 2026

Jan 9

First Seen

1614d ago

Mar 9

Last Seen

93d ago

Reports

source reports

56%

Confidence

medium

Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

56%

Signal Score

56 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

32 techniques

Feed Intelligence Summary

6 reports56% confidence

Source reports

56%

Confidence score

Category tags

abuseabuse reportaccount compromiseattachment-based phishingbecbec attackbotnetbrand abusebrand impersonationbrand-impersonationcertificate spoofingcommand and controlcommunication protocolcredential harvestingcredential phishingcredential theftcredential-harvestingdata exfiltrationdata exfiltration attemptdata theftdeceptive marketingdgadistributed attacksdomain-spoofingfinancefraudfraudulent websitehttp scannerhttpsindicatorinfrastructure acquisitionreconnaissanceingress tool transferlink injectionlink redirectionlink-injectionmalicious attachmentmalicious downloadmalicious linkmalicious linksmalicious softwaremalwaremalware attachmentmalware deliverymalware distributionmalware hostingnetworkphishingphishing attackphishing campaignphishing domain detectionphishing kitphishing-databaseprocess injectionresearchedrogue domainsecurity operationssmtpsocial engineeringsocial engineering attackspam campaignt1055t1071t1071.001t1078t1078.001t1078.004t1105t1189t1190t1192t1204t1204.001t1486t1496t1499.002t1499.003t1534t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1583t1583.001t1587.001t1588t1588.002t1590.001t1598t1598.003threat intelligencetyposquattingweb securityweb traffic

Activity Timeline

1 total obs

Mar 9Mar 9

Threat Activity Heatmap

· Peak: 2026-03-09

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Intelligence SummaryAI Generated

The domain **irs.gov.infrmatiion.com** has been identified as a critical indicator of compromise (IOC) associated with multiple cyber threats, including botnet activity, malware distribution, and phishing campaigns. First observed on January

Threat ScoreMedium Risk

SIGNAL

Signal Score

56%

Confidence

Reports

First seenJan 9, 2022

Last seenMar 9, 2026

VirusTotal

Not checked

WHOIS

description: Phishing, scams, all junk goes here.
raw: Administrative city: Reykjavik Administrative country: Iceland Administrative email: [email protected] Administrative state: Capital Region Create date: 2023-07-19 00:00:00 Domain name: infrmatiion.com Domain registrar id: 1068 Domain registrar url: http://www.namecheap.com Expiry date: 2024-07-19 00:00:00 Name server 1: ns2.bodis.com Name server 2: ns3.bd-verify-gu7sqsxf6r.com Name server 3: ns1.bodis.com Query time: 2023-07-20 10:01:37 Registrant city: ddbf76e4e8cee320 Registrant company: 4b7a0912c26a13e2 Registrant country: Iceland Registrant email: [email protected] Registrant name: 37bfbc24cafea5d2 Registrant phone: fc40cd552aeaa6b8 Registrant state: 3e0204199d8ebf9c Registrant zip: f206c9d9737ad45d Technical city: Reykjavik Technical country: Iceland Technical email: [email protected] Technical state: Capital Region Update date: 2023-07-19 00:00:00

`irs.gov.infrmatiion.com`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy