DomainMediumSignal 69/100
sst.my
Location
Saint Helena, Ascension and Tristan da CunhaFirst Seen
Apr 10, 2025
Last Seen
Jun 16, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
11 reports69% confidence
11
Source reports
69%
Confidence score
Category tags
active scanactive scanningarmasciiasiaasyncratbackdoorbase64-loaderbotnetbotnet activitybotnetdomaincensysclipboardhijackercode injectioncoinminercommand and controlcommand executioncryptocurrencydarktortilladarkvisionratdata exfiltrationdata store exposuredbatloaderdcratddosddos attacksddosagentdistributed attacksdlldocdropped-by-lummastealerelfencodedexeexecutable fileexploitation activityfakecaptchagafgytgetshellguloaderhajimehijackloaderhtahtmlindicatorinfostealerinjection activityinternet of thingsiot botnetiot securityiot/ics attackjpg-base64-loaderjslokilummastealermalaysiamalicious powershell activitymalicious softwaremalwaremeterpretermipsmiraimirai botnetmodiloadermoobotmozimsinetworknetwork scanningopen-diropendirphishingportscanpowershellprocess injectionps1quasarratraccoonclipperransomwareratreconnaissanceremcosratremote accessresearchedrev-base64-loadersaint helena, ascension and tristan da cunhascams & fraudscripting attacksservice scanshsliversmartloadersmoke loadersshdkitt1027t1055t1059t1059.001t1059.007t1071t1071.001t1078t1086t1105t1133t1189t1190t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1583t1588t1589t1592t1595.001t1595.002t1595.003threat actortor nodetsunamiua-wgetvidarvipkeyloggerweb exploitationxloaderxwormzip
Activity Timeline
Jun 16Jun 16
Threat Activity Heatmap
· Peak: 2026-06-16LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **sst.my**, originating from Saint Helena, Ascension and Tristan da Cunha, has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats. First observed on April
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
11
Reports
First seenApr 10, 2025
Last seenJun 16, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Exabytes Network Sdn Bhd
- domain rank
- -1
- raw
- Admin City: REDACTED FOR PRIVACY Admin Country: REDACTED FOR PRIVACY Admin Organization: REDACTED FOR PRIVACY Admin Postal Code: REDACTED FOR PRIVACY Admin State/Province: REDACTED FOR PRIVACY Billing City: REDACTED FOR PRIVACY Billing Country: REDACTED FOR PRIVACY Billing Organization: REDACTED FOR PRIVACY Billing Postal Code: REDACTED FOR PRIVACY Billing State/Province: REDACTED FOR PRIVACY Creation Date: 2017-01-30T16:00:00.000Z DNSSEC: unsigned Domain Name: sst.my Domain Status: ok https://icann.org/epp#ok Name Server: ns111.mschosting.com Name Server: ns112.mschosting.com Registrant City: 1f8f4166599d23ee Registrant Country: MY Registrant Email: f651612a2f356ad3s@ Registrant Fax: 1f8f4166599d23ee Registrant Name: 1f8f4166599d23ee Registrant Organization: e65769972abbe521 Registrant Phone: 1f8f4166599d23ee Registrant Postal Code: 1f8f4166599d23ee Registrant State/Province: 11c7062d05ed2b68 Registrant Street: 1f8f4166599d23ee Registrar Abuse Contact Email: [email protected] Registrar IANA ID: 60999954 Registrar URL: https://exabytes.my Registrar WHOIS Server: whois.mynicregistry.my Registrar: Exabytes Network Sdn Bhd Registry Admin ID: REDACTED FOR PRIVACY Registry Billing ID: REDACTED FOR PRIVACY Registry Domain ID: D6A302080-MYNIC Registry Expiry Date: 2026-01-30T16:00:00.000Z Registry Registrant ID: REDACTED FOR PRIVACY Registry Tech ID: REDACTED FOR PRIVACY Tech City: REDACTED FOR PRIVACY Tech Country: REDACTED FOR PRIVACY Tech Organization: REDACTED FOR PRIVACY Tech Postal Code: REDACTED FOR PRIVACY Tech State/Province: REDACTED FOR PRIVACY Updated Date: 2025-01-15T02:20:37.120Z
- references
- https://urlhaus.abuse.ch/browse/
- subdomains count
- 7
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 6 days ago
Appeared in 11 threat reports