DomainMediumSignal 0/100
stripchat.com
Location
First Seen
Mar 6, 2025
Last Seen
Jun 7, 2026
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
1 report0% confidence
1
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Jun 7Jun 7
Threat Activity Heatmap
· Peak: 2026-06-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), `stripchat.com`, is currently flagged with a whitelist status of 'Yes' and holds a negligible score of 0.0. This combination strongly suggests that the IOC does not pose a direct cybersecurity threat to the organization. While it appears in threat intelligence feeds, its inclusion does not inherently imply malicious activity, but rather that it has been recognized as benign or safe by trusted services. Organizations should view this IOC as low-risk, requiring …
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
1
Reports
First seenMar 6, 2025
Last seenJun 7, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Amazon Registrar, Inc.
- description
- "Living off the Land" Takeover (LogMeIn.com)“ INCIDENT REPORT: HIGH-VALUE TARGET NETWORK INTRUSION Threat Profile: Human-operated corporate-grade attack chain targeting an isolated device.Vector: Local network exposure (compromised router/neighboring device) or physical media (USB).Attack Chain Stages:Quant Script: Obfuscated entry file bypassing network filters.SystemBC RAT: Creates a silent, persistent SOCKS5/Tor tunnel for attacker commands.LogMeIn Abuse: Attackers use legitimate remote software to control the device undetected.Crowti (CryptoWall): Final ransomware payload to encrypt high-value data.Key Observations: Because the target device lacked direct internet access, adversaries are actively abusing the local network infrastructure or physical proximity to bridge the gap. I’m open to other opinions regarding this report. I have been unwell and my thinking has been unclear and even off as I focus on getting well. Thank you.
- raw
- Creation Date: 2006-02-13T19:09:16Z DNSSEC: unsigned Domain Name: STRIPCHAT.COM Domain Name: stripchat.com Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited Name Server: AMY.NS.CLOUDFLARE.COM Name Server: DUKE.NS.CLOUDFLARE.COM Registrant City: e8faa050f23df84b Registrant Country: GB Registrant Email: [email protected] Registrant Fax Ext: 3432650ec337c945 Registrant Fax: a4c349958db8f29d Registrant Name: ecc75098a237a01f Registrant Organization: 038a292988566233 Registrant Phone Ext: 3432650ec337c945 Registrant Phone: 33d4221f20a0d199 Registrant Postal Code: 0c47207fb5546dc6 Registrant State/Province: 0449eb7840e3a030 Registrant Street: 1614d10740614cc5 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.2024422253 Registrar IANA ID: 468 Registrar Registration Expiration Date: 2029-02-13T19:09:16Z Registrar URL: http://registrar.amazon.com Registrar URL: https://registrar.amazon.com Registrar WHOIS Server: whois.registrar.amazon Registrar: Amazon Registrar, Inc. Registry Domain ID: 344434901_DOMAIN_COM-VRSN Registry Expiry Date: 2029-02-13T19:09:16Z Registry Registrant ID: Not Available From Registry Registry Tech ID: Not Available From Registry Tech City: Hayes Tech Country: GB Tech Email: [email protected] Tech Organization: Identity Protection Service Tech Postal Code: UB3 9TR Tech State/Province: Middlesex Updated Date: 2024-06-20T13:15:04Z
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 21 days ago
Appeared in 1 threat report