IOC Radar
DomainLowSignal 50/100

staugustinesprimary.net

Location
IrelandIreland
First Seen
Apr 17, 2026
Last Seen
Apr 23, 2026
Apr 17
First Seen
57d ago
Apr 23
Last Seen
51d ago
4
Reports
source reports
50%
Confidence
low
0/91
VirusTotal
detections
Found in 4 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

4 reports50% confidence
4
Source reports
50%
Confidence score
Category tags
active scaneuropeindicatoripv4irelandnetworkresearched

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), `staugustinesprimary.net`, is identified with a high threat score of 49.58, indicating a significant potential risk to organizational security. This domain is directly linked to sophisticated threat campaigns, notably 'EbeeApril2026 Pt5' and the 'Pushpaganda' campaign, which is described as manipulating Google Discovery Feeds with AI-generated content to spread malicious notifications. Such tactics aim to exploit user trust and leverage advanced social enginee…

Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
4
Reports
First seenApr 17, 2026
Last seenApr 23, 2026

VirusTotal

0/ 91vendors flagged
0% detection rateJun 3, 2026

WHOIS

registrar
GoDaddy.com, LLC
description
HUMAN’s Satori Threat Intelligence and Research Team has identified a novel ad fraud, social engineering, and scareware threat dubbed Pushpaganda. This operation, named for push notifications central to the scheme, generates invalid organic traffic from real mobile devices by tricking users into subscribing to enabling notifications that presented alarming messages.
domain rank
-1
raw
Creation Date: 2014-04-30T12:40:06Z DNSSEC: unsigned Domain Name: STAUGUSTINESPRIMARY.NET Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited Name Server: VIVIENNE.NS.CLOUDFLARE.COM Name Server: WATSON.NS.CLOUDFLARE.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: 480-624-2505 Registrar IANA ID: 146 Registrar URL: http://www.godaddy.com Registrar WHOIS Server: whois.godaddy.com Registrar: GoDaddy.com, LLC Registry Domain ID: 1856780889_DOMAIN_NET-VRSN Registry Expiry Date: 2026-04-30T12:40:06Z Updated Date: 2025-09-23T10:46:15Z
references
IOCs.2026.csv, https://www.humansecurity.com/learn/resources/satori-threat-intelligence-alert-pushpaganda-manipulates-google-discovery-feeds-with-ai-generated-content-to-spread-malicious-notifications/
subdomains count
9

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 month ago · Last seen 1 month ago
Appeared in 4 threat reports