IOC Radar
DomainMediumSignal 17/100

phiglerdail.net

First Seen
Sep 17, 2025
Last Seen
Sep 17, 2025
Sep 17
First Seen
282d ago
Sep 17
Last Seen
282d ago
1
Reports
source reports
17%
Confidence
medium
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
17%
Signal Score
17 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

12 techniques

Feed Intelligence Summary

1 report17% confidence
1
Source reports
17%
Confidence score
Category tags
ad fraudbankingconsumer goodscredit card serviceselectronic health recordsenergyenergy distributionfinancefinancial servicesfinancial technologyhealth care and social assistancehealth information technologyhealthcare information systemshospital managementindicatormalvertisingmedical servicesnetworkoil & gaspatient carepayment processingpower generationpower systemsrenewable energyresearchedretail tradet1027t1165t1190t1204t1583t1583.001t1583.003t1584.001t1588t1588.002t1608t1608.001traffic redirectionwealth management

Activity Timeline

1 total obs
Sep 17Sep 17

Threat Activity Heatmap

· Peak: 2025-09-17
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

The domain **phiglerdail.net** has emerged as a significant indicator of compromise (IOC) associated with sophisticated ad fraud and financial data theft operations. First observed on September

Threat ScoreLow Risk
17
SIGNAL
Signal Score
17%
Confidence
1
Reports
First seenSep 17, 2025
Last seenSep 17, 2025

VirusTotal

Not checked

WHOIS

description
The cyber threat landscape is increasingly being camouflaged within mainstream digital advertising, where threat actors exploit or operate adtech platforms to distribute malicious content. This report focuses on a significant entity within this domain, referred to as Vane Viper, which is associated with a Cyprus-based holding company, AdTech Holding, encompassing various adtech and martech firms, including PropellerAds. The intricate web of these companies extends to include Notix, Adex, and ProPush, among others, revealing a complex ecosystem where each player contributes to a range of illicit activities such as malvertising, gambling, piracy, and disinformation. AdTech Holding's connections raise serious concerns about accountability and enable actors to leverage ambiguity in their operations. URL Solutions, a registrar tied to these firms, has gained notoriety, ranking as one of the riskiest registrars according to reputation scoring algorithms.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 9 months ago · Last seen 9 months ago
Appeared in 1 threat report