DomainMediumSignal 52/100
mrdltd.com
Location
GermanyFirst Seen
Apr 24, 2025
Last Seen
May 5, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
52%
Signal Score
52 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
11 reports52% confidence
11
Source reports
52%
Confidence score
Category tags
abuseaccount compromisealienvault_ransomwareawsazurebackdoorbad reputationbl networksbotnetc2cgi globalclick-based attackcommand and controlcompromised websitecredential harvestingcredential theftcybercxdata encryptiondata exfiltrationdistributed attackseuropeextortionfornex hostinggermanyheadless browserheadless browser automationindicatorinformation technologyinitial accessinjected linkinjected linksit infrastructurejavascript injectionlandupdate808limitedmalicious linksmalicious pluginmalicious pluginsmalicious softwaremalwaremalware injectionnetworknorth americaphishing attackprivilege escalationprocess injectionprospero oooproton66 ooopublicraasransomwarered bytesremote accessresearchedsecurity operationssftp compromisesmartape ousocial engineeringsoftware developmentsolutions llpsupply chain attacksystem disruptiont1027t1055t1059.007t1068t1071.001t1078t1078.001t1078.004t1105t1133t1189t1190t1195t1195.001t1195.002t1199t1204.001t1204.002t1486t1490t1496t1499.002t1499.003t1505.003t1555t1565t1566t1566.001t1566.002t1566.003t1608.001third-party riskthreat intelligenceunited statesuser executionwordpress phishing campaignwp engine
Activity Timeline
May 5May 5
Threat Activity Heatmap
· Peak: 2026-05-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **mrdltd.com**, originating from Germany, has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats. First observed on April
Threat ScoreMedium Risk
52
SIGNAL
Signal Score
52%
Confidence
11
Reports
First seenApr 24, 2025
Last seenMay 5, 2026
VirusTotal
Not checked
WHOIS
- domain rank
- -1
- raw
- Administrative city: Kuala Lumpur Administrative country: Malaysia Administrative email: [email protected] Administrative state: Wilayah Persekutuan Create date: 2025-04-23 00:00:00 Domain name: mrdltd.com Domain registrar id: 460 Domain registrar url: http://www.webnic.cc Expiry date: 2026-04-23 00:00:00 Name server 1: earl.ns.cloudflare.com Name server 2: sandy.ns.cloudflare.com Query time: 2025-04-24 12:42:39 Registrant city: d622b1166b297bee Registrant company: 20c6e82190de8bc4 Registrant country: Malaysia Registrant email: [email protected] Registrant fax: c3344f80ad4a9c61 Registrant name: edeae57e15fec50a Registrant phone: c3344f80ad4a9c61 Registrant state: f4e528a4fdf624a9 Registrant zip: eff8e039538ef902 Technical city: Kuala Lumpur Technical country: Malaysia Technical email: [email protected] Technical state: Wilayah Persekutuan Update date: 2025-04-23 00:00:00
- references
- https://connect.cybercx.com.au/dark-engine, https://storage.pardot.com/1069042/1748905703CCn8f7sn/CyberCX___WP_Engine_Report.pdf, https://threatfox.abuse.ch/export/csv/recent/
- subdomains count
- 1
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 month ago
Appeared in 11 threat reports