IOC Radar
DomainMediumSignal 71/100

newsinlevel.cc

Location
ChinaChina
First Seen
Nov 8, 2024
Last Seen
Jun 8, 2026
Nov 8
First Seen
580d ago
Jun 8
Last Seen
3d ago
11
Reports
source reports
71%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

184 techniques

Feed Intelligence Summary

11 reports71% confidence
11
Source reports
71%
Confidence score
Category tags
106_t1056active scanactivity: intelligence gatheringaerospace and defenseaptasiaattackbackdoorbrute forcechinacommand shellcommentcommunication technologiescorecore modulecountry: barbadoscountry: cubacountry: czech republiccountry: dominican republiccountry: el salvadorcountry: saudi arabiacountry: south africacountry: sri lankacountry: united kingdomcountry: united statescredential harvestingcredential stuffingcrypto cybercryptocurrencycyber espionagecyber espionage campaigncyber threatdata exfiltrationdata store exposureddosdefencedllencryptionexecutable fileexploitation activitygoclient backdoorhashesidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityintelligence gatheringlateral movementloadermalicious activitymalicious softwaremalwaremalware descriptionsmalware technologiesmalware: custom malwaremobile carriersmobile networksnetworknetwork modulepdb pathphishingphishing attackprocessprocess injectionqscqsc frameworkquarian backdoorransomwareremote accessresearchedsocial engineeringt1001t1001.001t1001.003t1003t1003.001t1003.002t1003.003t1003.004t1005t1007t1008t1010t1011t1012t1014t1016t1017t1018t1020t1021t1021.001t1021.002t1027t1027.009t1027.013t1031t1033t1036t1036.002t1036.004t1036.005t1038t1040t1041t1046t1047t1048t1049t1053t1053.001t1053.002t1053.003t1053.006t1053.007t1055t1055.001t1055.002t1055.003t1055.004t1055.008t1056t1056.001t1056.003t1057t1059t1059.001t1059.003t1059.006t1059.007t1060t1068t1069t1069.002t1070t1071t1071.001t1071.003t1071.004t1074t1074.001t1078t1078.002t1078.004t1081t1082t1083t1085t1087t1087.001t1087.002t1087.003t1088t1090t1094t1095t1102t1102.002t1105t1106t1110.002t1111t1112t1113t1114t1114.001t1114.002t1114.003t1115t1119t1120t1124t1125t1129t1130t1133t1134t1137t1140t1155t1156t1170t1189t1190t1192t1193t1194t1199t1201t1202t1204.t1204.001t1204.002t1210t1213t1213.002t1217t1218t1222t1486t1489t1490t1491t1493t1495t1496t1497t1497.003t1503t1518t1530t1534t1539t1543t1543.003t1547t1547.001t1548.002t1552t1553t1558t1558.001t1560t1560.001t1562.001t1565t1566t1566.001t1566.002t1566.003t1569t1569.002t1571t1574t1574.006t1583.002t1583.003t1587t1587.001t1588t1588.002t1589t1590.001t1592t1592.004t1595.002t1598t1598.001t1598.002t1598.003t1602t1602.002t1608.001t1608.005t1614t1614.001targeted sector: aerospacetargeted sector: defensetargeted sector: governmenttargeted sector: manufacturingtargeted sector: researchtargeted sector: utilitiestelecom servicestelecommunicationsthreat actorthreat actor: miragetimetor nodeturianuser

Activity Timeline

1 total obs
Jun 8Jun 8

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain newsinlevel.cc, originating from China, has emerged as a significant indicator of compromise (IOC) in the cybersecurity landscape. First observed on November

Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
11
Reports
First seenNov 8, 2024
Last seenJun 8, 2026

VirusTotal

Not checked

WHOIS

registrar
GoDaddy.com, LLC
domain rank
-1
raw
Admin City: Scottsdale Admin Country: US Admin Email: [email protected] Admin Organization: Domains By Proxy, LLC Admin Postal Code: 85260 Admin State/Province: Arizona Creation Date: 2020-07-27T02:21:04Z Creation Date: 2020-07-27T07:21:04Z DNSSEC: unsigned Domain Name: NEWSINLEVEL.CC Domain Name: newsinlevel.cc Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited Name Server: NS25.DOMAINCONTROL.COM Name Server: NS26.DOMAINCONTROL.COM Registrant City: 373f4980ad3d2d01 Registrant Country: US Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: 9fad764be0c7e95d Registrant Name: 80315b2e6ac1a801 Registrant Organization: b46a98a26fe2fd9f Registrant Phone Ext: 3432650ec337c945 Registrant Phone: d5f66d3a005b000d Registrant Postal Code: b9448b1c75ff534d Registrant State/Province: 30bdd2917a604c83 Registrant Street: 037792fd5a6fe619 Registrant Street: f38c0adea706dbc3 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.4806242505 Registrar Abuse Contact Phone: 480-624-2505 Registrar IANA ID: 146 Registrar Registration Expiration Date: 2021-07-27T02:21:04Z Registrar URL: http://www.godaddy.com Registrar WHOIS Server: whois.godaddy.com Registrar: GoDaddy.com, LLC Registry Admin ID: Not Available From Registry Registry Domain ID: 150083960_DOMAIN_CC-VRSN Registry Expiry Date: 2021-07-27T07:21:04Z Registry Registrant ID: Not Available From Registry Registry Tech ID: Not Available From Registry Tech City: Scottsdale Tech Country: US Tech Email: [email protected] Tech Organization: Domains By Proxy, LLC Tech Postal Code: 85260 Tech State/Province: Arizona Updated Date: 2020-07-27T02:21:04Z Updated Date: 2020-07-27T07:21:04Z
references
https://securelist.com/cloudcomputating-qsc-framework/114438/, https://labs.inquest.net/iocdb
subdomains count
0

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 days ago
Appeared in 11 threat reports