IOC Radar
DomainMediumSignal 30/100

sevrrhst.com

Location
NetherlandsNetherlands
First Seen
Feb 4, 2026
Last Seen
Jun 6, 2026
Feb 4
First Seen
137d ago
Jun 6
Last Seen
15d ago
7
Reports
source reports
30%
Confidence
medium
13/91
VirusTotal
detections
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
30%
Signal Score
30 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

42 techniques

Feed Intelligence Summary

7 reports30% confidence
7
Source reports
30%
Confidence score
Category tags
ai applicationsai researchai solutionsartificial intelligenceauditbankingcobalt strikecode executioncode injectioncommand and controlcommand executioncomputer visioncontrolcredential accesscredential harvestingcredential theftcredit card servicescryptocurrency threatscryptojackingdarktracedarktrace identifiesdata exfiltrationdeed ratdeep learningdesktopdgadll injectiondllmaineuropefinancefinancial servicesfinancial technologyfollowindicatorllmloadermachine learningmacosmalicious softwaremalwaremalware loadermin read2natural language processingnetherlandsnetworkoperating systempayment processingphishingphishing attackprocess injectionpythonransomwarereact2shellresearchedresource hijackingsalt typhoonsocial engineeringsoftware exploitationt1021.001t1027t1036t1036.005t1055t1057t1059t1059.001t1059.002t1059.004t1059.007t1069.001t1071.001t1078t1082t1105t1106t1140t1189t1190t1195t1203t1204t1204.001t1222t1222.002t1486t1496t1547t1547.001t1548.003t1553t1553.006t1565t1566t1566.001t1566.002t1566.003t1569.002t1598t1608t1608.004tara gouldtcc bypasstoken vestingunited nationswealth managementweb exploitation

Activity Timeline

1 total obs
Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **sevrrhst.com**, originating from the Netherlands, has emerged as a significant indicator of compromise (IOC) in the cybersecurity landscape. First observed on February

Threat ScoreLow Risk
30
SIGNAL
Signal Score
30%
Confidence
7
Reports
First seenFeb 4, 2026
Last seenJun 6, 2026

VirusTotal

13/ 91vendors flagged
14% detection rateJun 7, 2026

WHOIS

description
A targeted attack on the macOS operating system, using a disguised AppleScript, has been uncovered by researchers at the Chainbase Lab and the SlowMist security team, who are working with them to identify and identify the attackers.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 15 days ago
Appeared in 7 threat reports