DomainMediumSignal 69/100
kentfiresafe.com
Location
United KingdomFirst Seen
Apr 1, 2025
Last Seen
Jun 3, 2026
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
73%
Signal Score
69 / 100
IDS Rule
Yes
Threat Context
Tags
Feed Intelligence Summary
9 reports73% confidence
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), `kentfiresafe.com`, represents a significant and immediate threat to organizational security. Its high threat score and explicit categorization as "Suspected Phishing" indicate a strong likelihood of malicious intent, potentially leading to credential compromise, malware delivery, or other detrimental activities. Furthermore, this domain has been linked to the GREYVIBE threat group, a Russia-nexus entity known for leveraging advanced tactics, which elevates th…
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
73%
Confidence
9
Reports
First seenApr 1, 2025
Last seenJun 3, 2026
VirusTotal
Not checked
WHOIS
- description
- GREYVIBE has used several delivery approaches. We grouped GREYVIBE’s observed activity into a set of distinct campaigns linked by shared malware, infrastructure, and operational behaviours. Across these campaigns, the group has consistently used appropriate lures for deception and implemented a decoy-and-payload execution logic to reinforce the credibility of the lure while covertly gaining access to the victim’s machine.
- domain rank
- -1
- subdomains count
- 1
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 days ago
Appeared in 9 threat reports from 1 source