IOC Radar
DomainMediumSignal 100/100

jinweidianzi.com

Location
United StatesUnited States
First Seen
Jul 7, 2024
Last Seen
Feb 15, 2026
Jul 7
First Seen
703d ago
Feb 15
Last Seen
115d ago
7
Reports
source reports
99%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

25 techniques

Feed Intelligence Summary

7 reports99% confidence
7
Source reports
99%
Confidence score
Category tags
american expressamexbankingbotnetbrand abusebrand impersonationcommand and controlconsumer goodscredential harvestingcredential phishingcredit cardcredit card phishingcredit card servicesdata exfiltrationdistributed attacksfinancefinance and insurancefinancial sector targetingfinancial servicesfinancial services targetingfinancial technologyfleet managementfraudfreight servicesindicatorinfrastructure acquisitionreconnaissanceiocsmalicious linksmalicious softwaremalicious websitemalwaremaritime transportnetworknola defensenorth americapassenger transportationpayment processingphishingphishing attackphishing domainphishing urlprocess injectionrail transportresearchedretail tradescamsocial engineeringt1055t1071.001t1078t1078.004t1105t1189t1195t1195.002t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1583t1583.001t1587.001t1588t1588.002t1590.001transportation and warehousingtransportation infrastructuretransportation technologyunited statesurlswealth managementweb security

Activity Timeline

1 total obs
Feb 15Feb 15

Threat Activity Heatmap

· Peak: 2026-02-15
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

The domain **jinweidianzi.com** has emerged as a significant indicator of compromise (IOC) associated with multiple cyber threats, including botnet activity, malware distribution, and phishing campaigns. First observed on July

Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
7
Reports
First seenJul 7, 2024
Last seenFeb 15, 2026

VirusTotal

Not checked

WHOIS

description
This page stores American Express Card phishing page IOCs. Legitimate website for the brand is https://www.americanexpress.com/ NOLA defense is tracking newly observed phishing websites. Follow us on twitter https://twitter.com/noladefense
domain rank
-1
raw
Administrative city: Redacted for privacy Administrative country: Redacted for privacy Administrative state: Redacted for privacy Create date: 2024-11-03 00:00:00 Domain name: jinweidianzi.com Domain registrar id: 3993 Domain registrar url: www.gname.com Expiry date: 2025-11-03 00:00:00 Name server 1: ns2.julydns.com Name server 2: ns1.julydns.com Query time: 2024-11-04 14:41:07 Registrant city: ddb75a553547a419 Registrant company: ddb75a553547a419 Registrant country: China Registrant email: d339efcad9f8d9cas@ Registrant fax: ddb75a553547a419 Registrant name: ddb75a553547a419 Registrant phone: ddb75a553547a419 Registrant state: 1f506a14155df81d Registrant zip: ddb75a553547a419 Technical city: Redacted for privacy Technical country: Redacted for privacy Technical state: Redacted for privacy Update date: 2024-11-04 00:00:00
references
https://www.virustotal.com/gui/collection/35ad160e8a14e95ccd865523eccfdb22fd9f9966750f944c129291eac570334b
subdomains count
2

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 7 threat reports