IOC Radar
DomainHighVerifiedSignal 80/100

moe.om

Location
Costa RicaCosta Rica
First Seen
Mar 27, 2025
Last Seen
Jun 12, 2026
Mar 27
First Seen
451d ago
Jun 12
Last Seen
8d ago
5
Reports
source reports
80%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
80%
Signal Score
80 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

15 techniques

Feed Intelligence Summary

5 reports80% confidence
5
Source reports
80%
Confidence score
Category tags
active scanakamaiasn1anguillaarubaasiaaustraliabahamasbarbadosbbc newsbotnetbotnet activitycanadacayman islandscommand and controlcosta ricacubacuraçaodata exfiltrationdata store exposuredistributed attackseducationeuropeexploitation activityexternal url submissionfilescan reportgeoipgeorgiaghostgoogleguatemalaindicatorindonesiainjection activityiocjapanlevel3malcore analysismalicious softwaremalwaremediamexicomininetcraft submissionnetherlandsnetworknorth americaoceaniaomanpanamaphilippinespolandprocess injectionprotonpublic urlrandomransomwareresearchedsaint kitts and nevissaint martin (french part)saint vincent and the grenadinesseznamsint maarten (dutch part)t1055t1071.001t1132t1132.001t1486t1496t1499.002t1499.003t1565t1588t1588.001t1588.002t1588.003t1589t1589.002tanzania, united republic oftelecomtelecommunicationsthreat actortriage analysistrinidad and tobagotwitterukraineunited kingdomunited statesurlscan submissionyara rule matching

Activity Timeline

1 total obs
Jun 12Jun 12

Threat Activity Heatmap

· Peak: 2026-06-12
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
80
SIGNAL
Signal Score
80%
Confidence
5
Reports
First seenMar 27, 2025
Last seenJun 12, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

registrar
Oman Telecommunication Company (Omantel)
domain rank
-1
raw
Admin Organization: Ministry Of Education Domain Name: moe.om Name Server: ns3.ict.omantel.om Name Server: ns4.ict.omantel.om Registrant Email: [email protected] Registrant Name: 5965a48f1091e5a1 Registrant Organization: 5965a48f1091e5a1 Registrar IANA ID: 700000007 Registrar URL: http://www.omantel.om Registrar: Oman Telecommunication Company (Omantel) Registry Domain ID: D72088850BCA9119F179AE811F95714B4-OMREG
references
https://metadefender.com/results/file/bzI1MDMwMVFWaXRDS0hpWElYcnV0QllCYlB1, https://mwdb.cert.pl/file/efb45096e24a61b488eb809bd8edf874d15bb498dd75ced8b888b020c87e5c6c, https://n0paste.eu/UH6n5pD/, Triage: https://tria.ge/240829-z3z4va1hre, Exif: https://app.malcore.io/share/652553f6aec33d70a1dbbd25/66d0e5976feac94926a90f33, Threat Score: https://app.malcore.io/share/652553f6aec33d70a1dbbd25/66d0e59683df8e84e0bcdcc4, Filescan Report ID: 7c5a9d40-8689-467f-97ab-07da29b4f633, Yara: https://app.malcore.io/share/652553f6aec33d70a1dbbd25/66d0e58e0b6b4b299e3b73cd & https://app.malcore.io/share/652553f6aec33d70a1dbbd25/66d0e5910b6b4b299e3b7420
subdomains count
23

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 year ago · Last seen 8 days ago
Appeared in 5 threat reports