DomainMediumSignal 100/100
officemicroupdate.com
First Seen
Feb 26, 2021
Last Seen
Feb 19, 2026
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
4 reports99% confidence
4
Source reports
99%
Confidence score
Category tags
apt 28botnetcommand and controldata exfiltrationdistributed attacksindicatormalicious softwaremalwarenetworkprocess injectionresearchedt1055t1071.001t1486t1496t1499.002t1499.003t1565
Activity Timeline
Feb 19Feb 19
Threat Activity Heatmap
· Peak: 2026-02-19LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
4
Reports
First seenFeb 26, 2021
Last seenFeb 19, 2026
VirusTotal
Not checked
WHOIS
- registrar
- MarkMonitor, Inc.
- creation date
- 2016-04-06T17:40:38
- expiration date
- 2027-04-06T17:40:38
- updated date
- 2026-03-05T13:30:21
- name servers
- NS149.MICROSOFTINTERNETSAFETY.NET, NS150.MICROSOFTINTERNETSAFETY.NET
- country
- US
- org
- Microsoft Corporation
- status
- clientDeleteProhibited (https://www.icann.org/epp#clientDeleteProhibited), clientTransferProhibited (https://www.icann.org/epp#clientTransferProhibited), clientUpdateProhibited (https://www.icann.org/epp#clientUpdateProhibited), serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited, serverTransferProhibited https://icann.org/epp#serverTransferProhibited, serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 5 years ago · Last seen 4 months ago
Appeared in 4 threat reports