IOC Radar
DomainMediumSignal 50/100

jeosd.top

Location
Taiwan, Province of ChinaTaiwan, Province of China
First Seen
Apr 17, 2026
Last Seen
Apr 24, 2026
Apr 17
First Seen
58d ago
Apr 24
Last Seen
51d ago
4
Reports
source reports
50%
Confidence
medium
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

4 reports50% confidence
4
Source reports
50%
Confidence score
Category tags
account-takeoveractive scanad-fraudadult-contentadvance-fee-scamaged-domainamp-cacheanti-analysisasiaasset-theftautomated-scanbackdoorbonus-scambooking-com-impersonationbot-promotedbrand-impersonationbrazilbrowser-extensionbrute forcecelebrity-impersonationclick-to-unlockcloakingcloudflare-workerscpf-harvestingcredential stuffingcredential-harvestingcryptocurrencycryptocurrency-scamdaily-threat-inteldata-harvestingdeceptive-advertisingdeceptive-crypto-gamblingdeceptive-incentivesdeceptive-luredeceptive-platformdeceptive-pricingdeceptive-registrationdeceptive-schemedeceptive-tacticsdomain-classificationdomain-rotationdpdelon-muskemail-harvestingemployment-scamevasionevasion-techniqueexploitation activityextortionfacebook-impersonationfake-financial-aidfake-giveawayfake-job-offerfake-messagefake-testimonialsfake-trust-badgefile-sharing-abusefinancial servicesfinancial-exploitationfinancial-fraudfinancial-impersonationfinancial-lurefinancial-scamfinancial-sectorfinancial-service-impersonationfinancial-services-impersonationfiverr-impersonationfraudfraudulent-platformgambling-scamgame-luregeneric-loginget-paid-to-scamget-rich-quickgovernment-impersonationhigh-risk-domainhigh-risk-tldidentity & access exploitationidentity-theftindicatorinformation-harvestinginvestment-scaminvitation-code-scamiot securityjava-malwarelogin-harvestingmalicious-activitymalicious-archivemalicious-domainmalicious-file-distributionmalicious-redirectmalicious-redirectsmalwaremalware-distributionmedia / entertainmentmercadolivremfa-interceptionmicrosoft-impersonationmonetization-schememoney-making-schememoney-scammusic-streaming-impersonationnebula-xnetworknew-domainnewly-registered-domainonline-gambling-scamontario-governmentpayment-information-harvestingphishingphishing-campaignplaceholder-contentponzi-schemepotentially-maliciousprize-scamransomwarerecent-domainrecruitment-fraudrecruitment-scamrecruitment-schemeredirect-chainredirect-facadereferral-schemeresearchedretail / e-commerceretail-e-commerceretail-scamretail-sectorrocket-league-impersonationru-domainscamscam-sitesscams & fraudsearch-engine-blockingshufersalshufersal-impersonationsoftware-piracysouth americaspamspam-promotionstreaming-service-impersonationsupply chain attacksurvey-scamsuspicious-domainsuspicious-redirectsuspicious-registrysuspicious-tldtaiwantargeting databasetask-based-scamtask-scamthreat actortiktok-impersonationtor nodetraffic-redirectiontyposquattingunsecured-filesunsolicited-messagesurl-cloakingurl-redirectionurl-shortenerurlertusdt-targetingwibo-baltic-uabwithdrawal-scamx-formerly-twitter

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
4
Reports
First seenApr 17, 2026
Last seenApr 24, 2026

VirusTotal

Not checked

WHOIS

description
AI-DETECTED: DANGEROUS | Confidence: 85/100 | Type: Phishing
domain rank
-1
raw
Administrative city: Registration Private Administrative country: China Administrative email: fb6ff66ef97c0518s@REDACTED Administrative state: Registration Private Create date: 2026-04-09 00:00:00 Domain name: jeosd.top Domain registrar id: 1915 Domain registrar url: https://rdap.hkdns.hk/rdap/ Expiry date: 2027-04-09 00:00:00 Name server 1: ns1.363.hk Name server 2: ns2.363.hk Query time: 2026-04-10 10:18:28 Registrant address: 80315b2e6ac1a801 Registrant city: 80315b2e6ac1a801 Registrant country: China Registrant email: fb6ff66ef97c0518s@REDACTED Registrant name: 80315b2e6ac1a801 Registrant state: 80315b2e6ac1a801 Technical city: Registration Private Technical country: China Technical email: fb6ff66ef97c0518s@REDACTED Technical state: Registration Private Update date: 2026-04-10 00:00:00
references
https://urlert.com/domain/acccat.com, https://urlert.com/domain/accountresourcecenter.xyz, https://urlert.com/domain/aceimg.com, https://urlert.com/domain/ampproject.org, https://urlert.com/domain/ankergames.net, https://urlert.com/domain/artinexia.com, https://urlert.com/domain/atlasjet.com.ng, https://urlert.com/domain/bexlorina.cfd, https://urlert.com/domain/blogspot.com, https://urlert.com/domain/blueberginternational.com, https://urlert.com/domain/br9f.bet, https://urlert.com/domain/bringitonmsg.com, https://urlert.com/domain/bunnyband.com, https://urlert.com/domain/calendarikymer.forum, https://urlert.com/domain/cgtsrb.vip, https://urlert.com/domain/clientproject.info, https://urlert.com/domain/create-road.my, https://urlert.com/domain/dandys1.xyz, https://urlert.com/domain/delta-executor.com, https://urlert.com/domain/doutf.cn
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 4 threat reports