IOC Radar
DomainMediumSignal 47/100

lan123.cc

Location
SingaporeSingapore
First Seen
Jul 13, 2025
Last Seen
Jun 7, 2026
Jul 13
First Seen
337d ago
Jun 7
Last Seen
7d ago
8
Reports
source reports
47%
Confidence
medium
13/91
VirusTotal
detections
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
47%
Signal Score
47 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Feed Intelligence Summary

8 reports47% confidence
8
Source reports
47%
Confidence score
Category tags
access controlactive scanasiaattachment based phishingattachment exploitationattachment phishingbecbotnetbotnet activitybrand impersonationbrute forcebusiness email compromisecommand and controlcommunication protocolcredential harvestingcredential phishingcredential stuffingcredential theftcredential_harvestingdata exfiltrationdata store exposuredeceptive websitedeceptive websitesdistributed attacksemail-based attackexploitation activityfinancefinancial phishingfraudhttp scannerhttp_httpshttpsidentity & access exploitationindicatorindicators of compromiseinitial accessinitial_accessinjection activitylink injectionlink phishingmalicious attachmentmalicious domainmalicious linkmalicious linksmalicious softwaremalwaremalware deliverymalware distributionnetworkphishingphishing attackphishing campaignphishing campaign detectedphishing campaign detectionphishing domain detectedphishing domainsphishing-databaseprocess injectionransomwareresearchedscams & fraudsecurity policysingaporesmtpsocial engineeringsocial engineering attackspearphishingt1048t1048.003t1055t1071t1071.001t1078t1189t1190t1192t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1568t1568.002t1583t1583.006t1598t1598.003threat preventiontor nodeweb securityweb trafficwebsite forgery

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
47
SIGNAL
Signal Score
47%
Confidence
8
Reports
First seenJul 13, 2025
Last seenJun 7, 2026

VirusTotal

13/ 91vendors flagged
14% detection rateJun 8, 2026

WHOIS

registrar
Gname 090 Inc
description
LTNA Cyber provides additional enrichment for domain and URL indicators, including RIR and DNS intelligence, domain registration context, routing verification, BGP stream visibility, and GeoIP/ISP attribution. Learn more: https://ltna.com.au/cyber
domain rank
-1
raw
Creation Date: 2024-11-16T09:02:46Z DNSSEC: unsigned Domain Name: LAN123.CC Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: A12.SHARE-DNS.COM Name Server: B12.SHARE-DNS.NET Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +65 31581391 Registrar IANA ID: 4082 Registrar URL: http://www.gname.com Registrar WHOIS Server: www.gname.com/whois Registrar: Gname 090 Inc Registry Domain ID: 203294030_DOMAIN_CC-VRSN Registry Expiry Date: 2025-11-16T09:02:46Z Updated Date: 2025-06-25T11:06:49Z
subdomains count
1

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 11 months ago · Last seen 7 days ago
Appeared in 8 threat reports