DomainMediumSignal 0/100
rebrand.ly
Location
United StatesFirst Seen
Jun 5, 2020
Last Seen
Jun 7, 2026
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
4 reports0% confidence
4
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Jun 7Jun 7
Threat Activity Heatmap
· Peak: 2026-06-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This indicator, rebrand.ly, has been identified as a legitimate and benign domain, significantly reducing its immediate risk to organizational security. Its presence in various threat intelligence feeds primarily stems from its function as a URL shortening service, which can sometimes be leveraged by malicious actors but does not inherently signify a threat. The low score of 0.0 and its explicit whitelisting confirm that rebrand.ly is not currently associated with hostile behaviors or active cam…
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
4
Reports
First seenJun 5, 2020
Last seenJun 7, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Libyan Spider Network (int)
- description
- Imported indicator
- domain rank
- 1671
- raw
- Creation Date: 2014-09-12T22:00:00Z DNSSEC: unsigned Domain Name: rebrand.ly Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: ns-1386.awsdns-45.org Name Server: ns-1920.awsdns-48.co.uk Name Server: ns-323.awsdns-40.com Name Server: ns-764.awsdns-31.net Registrant City: 677bcde8593a42e3 Registrant Country: IR Registrant Email: [email protected] Registrant Name: ed8132ed371d99f0 Registrant Organization: 8c8652f1ba8b3b01 Registrant Phone: 50a483f106ca8cbf Registrant Postal Code: 394c5d3b7c9e8754 Registrant State/Province: c793f9e1ce3181c0 Registrant Street: a1616d4fed7787c2 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +18448469791 Registrar Registration Expiration Date: 2028-09-12T22:00:00Z Registrar: Libyan Spider Network (int) Registry Domain ID: 31820-CoCCA Registry Expiry Date: 2028-09-12T22:00:00Z Registry Registrant ID: 10959-CoCCA Updated Date: 2025-02-05T11:42:39Z
- references
- https://allegro.pl/oferta/solidna-szklana-kula-bombka-do-zawieszenia-9cm-niebieska-metaliczna-17158975307#parametry, https://allegro.pl/oferta/poidelko-dla-ptakow-10-cm-figurka-ogrodowa-z-metalu-rdza-16510231991, https://ct.captcha-delivery.com/c.js, https://assets.allegrostatic.com/bundle/v3-54203a750607c1f8005bfa4f30210fc496ff082fa5955ab5c25297957b245cbb.css, https://www.trendmicro.com/en_us/research/23/h/profile-stealers-spread-via-llm-themed-facebook-ads.html, https://www.trendmicro.com/content/dam/trendmicro/global/en/research/23/h/profile-stealers-spread-via-llm-themed-facebook-ads/iocs-profile-stealers-spread-via-llm-themed-facebook-ads.txt, https://labs.inquest.net/iocdb, 00eb49d81e1ca0b23a15e3d902e3ee40f5069da86e6f31d79424e97c70471d56, https://hybrid-analysis.com/sample/00eb49d81e1ca0b23a15e3d902e3ee40f5069da86e6f31d79424e97c70471d56/63f3de2280658c708b639a72, TarD587.tmp - c0cf8cc04c34b5b80a2d86ad0eafb2dd71436f070c86b0321fba0201879625fd, https://hybrid-analysis.com/sample/c0cf8cc04c34b5b80a2d86ad0eafb2dd71436f070c86b0321fba0201879625fd, https://hybrid-analysis.com/sample/db695a96adb70d5f6246273f4e6c218b2c44f02b3726c3dee4d56b6428bb0ddf, https://twitter.com/Ledtech3/status/1582811328053329920, g3b55cb5ceccd449fbabeeacf1df4f47c442e6e5e8870454cb2f2ffba60c7626f.json, http://ip.address.here:15002/debug/vars
- subdomains count
- 5
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 6 years ago · Last seen 3 days ago
Appeared in 4 threat reports