DomainMediumSignal 0/100
tatacom.duckdns.org
Location
ChinaFirst Seen
Jun 12, 2025
Last Seen
Jun 18, 2026
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Jun 18Jun 18
Threat Activity Heatmap
LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This analysis concerns the domain `tatacom.duckdns.org`. Given its whitelisted status and a threat score of 0.0, this Indicator of Compromise (IOC) is currently assessed as low-risk and does not suggest any active malicious intent or immediate threat to organizational assets. The presence of this domain in threat intelligence feeds, specifically from 'Public Attackers' and 'AlienVault OTX Feeds', primarily reflects its inclusion in broad data sets rather than indicating hostile behavior. There i…
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenJun 12, 2025
Last seenJun 18, 2026
VirusTotal
Not checked
WHOIS
- description
- In this SentinelOne Labs investigation, researchers track a sophisticated China-linked threat actor relentlessly targeting high-value entities across multiple sectors. The report uncovers their evasive TTPs, custom malware tooling, and persistent intrusion attempts, providing critical IOCs (Indicators of Compromise) and defensive recommendations. A must-read for threat hunters and security teams defending against advanced persistent threats (APTs).
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 days ago
Appeared in 2 threat reports