DomainMediumSignal 78/100
security-microsoft.net
First Seen
Jun 23, 2024
Last Seen
Feb 19, 2026
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
3 reports78% confidence
3
Source reports
78%
Confidence score
Category tags
botnetcommand and controlcredential harvestingdata exfiltrationdistributed attacksindicatormalicious softwaremalwarenetworkphishing attackprocess injectionresearchedsocial engineeringt1055t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003
Activity Timeline
Feb 19Feb 19
Threat Activity Heatmap
· Peak: 2026-02-19LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **security-microsoft.net** has emerged as a significant indicator of compromise (IOC) associated with botnet and malware activities. First observed on June
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
3
Reports
First seenJun 23, 2024
Last seenFeb 19, 2026
VirusTotal
Not checked
WHOIS
- registrar
- 1API GmbH
- creation date
- 2023-11-15T12:20:14
- expiration date
- 2026-11-15T12:20:14
- updated date
- 2026-05-12T01:20:35
- name servers
- NS1.DNSIMPLE-EDGE.COM, NS2.DNSIMPLE-EDGE.NET, NS3.DNSIMPLE-EDGE.IO, NS4.DNSIMPLE-EDGE.ORG
- country
- US
- emails
- [email protected], bb6892241751b6ba52da19530e0fbf3ac584ed5acd9c6d11b9183abc568d0285@security-microsoft.net.whoisproxy.org
- org
- c/o whoisproxy.com
- status
- clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 4 months ago
Appeared in 3 threat reports