IOC Radar
DomainHighVerifiedSignal 30/100

tele-channel.com

Location
United StatesUnited States
First Seen
Apr 7, 2021
Last Seen
Apr 7, 2026
Apr 7
First Seen
1893d ago
Apr 7
Last Seen
67d ago
6
Reports
source reports
30%
Confidence
high
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
30%
Signal Score
30 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

33 techniques

Feed Intelligence Summary

6 reports30% confidence
6
Source reports
30%
Confidence score
Category tags
access controlaccount compromiseacintactive scanagentagent teslaalexaalexa topall octoseekanna paulaappdataappleapple iosartemisascii textasnone unitedasyncratattackazorultbank securitybankerbazaloaderbazarloaderbitcoinblacklist httpblacklist httpsblockchainbodybotnetbotnet activitybrute forcec2 domainscisco umbrellaclasscleanerclick-based attackcobalt strikecommand & controlcommand and controlcommodity contracts intermediationconduitcorecovid19credential harvestingcredential stuffingcry killcrypto exchangecrypto miningcrypto walletcryptocurrencycyber threatdapatodata encryptiondata exfiltrationdata store exposureddosddos attacksdecentralized financedetection listdigital currencydistributed attacksdns attackdownldrdownloaderdroppeddropperemotetencpkencryptencryptionengineeringentrieserroret torexitexpiredexploitation activityextortionfalconfali contactedfali maliciousfilefilesfinancefinancial institutionfinancial servicesfrom emailfusioncoregeneratorgenericgeneric malwareheadersheurhostname enumerationhybrididentity & access exploitationiframeindicatorindicators of compromiseinformation gatheringinfostealerinfrastructure acquisitionreconnaissanceingress tool transferinjection activityinternet of thingsinternet stormiobitiociot botnetiot securityiot/ics attackipv4japan unknownkeep alivekeyloggerknown torlocallockbitlookmachine learning detectionmalicious activitymalicious downloadmalicious linksmalicious sitemalicious softwaremalicious url repositorymalspam emailmalvertizingmalwaremalware communicationmalware distributionmalware domainsmalware noradmalware sitemalwarebytesmediametadata analysismeterpretermillionminermirai botnetmisc attackmobile threatmovedmsi filemsilname verdictnanocore ratnetwire rcnetworknetwork scanningnetwormnextnjratnode trafficnoname057north americaopenpassive dnspattern matchpayment securitypayment system attackpaypalphishphishingphishing attackphishing intelligencephishing sitepng imageponypredatorprocess injectionpulse pulsesqakbotqbotquasarraccoonransomransomexxransomwarereconnaissanceredlineredline stealerrefreshremcos trojanremote accessremote servicesresearchedrestartrostpayrussia unknownsafe sitesamplesscams & fraudscan endpointsscriptsearchsecurity policyservicesilk roadsitesmokeloadersocial engineeringsocial media securityspamspanspyrixkeyloggerssl certificatestealerstringssummaryswrortsystem disruptiont1001t1021.001t1041t1055t1059.001t1059.003t1071t1071.001t1071.004t1078t1105t1204.001t1204.002t1486t1490t1496t1499.001t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1568t1568.002t1569.002t1573t1573.001t1573.002t1587.001t1589.001t1590.001tag countteamthreat actorthreat intelligencethreat preventionthreat reporttoolstor nodetrojan malwaretrojanspytsara brashearstwittertypeunionunitedunited statesunsafeurlsuser executionverifyvidarwacatacwindows ntxcnfezip archive

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
30
SIGNAL
Signal Score
30%
Confidence
6
Reports
First seenApr 7, 2021
Last seenApr 7, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

registrar
DYNADOT LLC
description
Command and Control domains for malware known as Alphacrypt. These domains are extracted from malware sandbox reports using a Machine Learning model trained on a corpus of good and bad domains.
domain rank
-1
raw
Admin City: San Mateo Admin Country: US Admin Organization: Super Privacy Service LTD c/o Dynadot Admin Postal Code: 94401 Admin State/Province: California Creation Date: 2020-09-02T20:29:56.0Z Creation Date: 2020-09-02T20:29:56Z DNSSEC: unsigned Domain Name: TELE-CHANNEL.COM Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Name Server: NS1.CSOF.NET Name Server: NS2.CSOF.NET Name Server: NS3.CSOF.NET Name Server: NS4.CSOF.NET Name Server: ns1.csof.net Name Server: ns2.csof.net Name Server: ns3.csof.net Name Server: ns4.csof.net Registrant City: 3715f4e2b12e17cb Registrant Country: US Registrant Email: fc8d5c98614bb367s@ Registrant Name: 1f8f4166599d23ee Registrant Organization: 473daf17453d83cd Registrant Phone: dd8b86e7cf387e10 Registrant Postal Code: ae51fcfbe03bd2c4 Registrant State/Province: 77ab92f1911d7c5f Registrant Street: 3432650ec337c945 Registrant Street: 8a188706046fdffa Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +1.6502620100 Registrar Abuse Contact Phone: +16502620100 Registrar IANA ID: 472 Registrar Registration Expiration Date: 2025-09-02T20:29:56.0Z Registrar URL: http://www.dynadot.com Registrar WHOIS Server: whois.dynadot.com Registrar: DYNADOT LLC Registrar: Dynadot Inc Registry Domain ID: 2557367005_DOMAIN_COM-VRSN Registry Expiry Date: 2025-09-02T20:29:56Z Tech City: San Mateo Tech Country: US Tech Organization: Super Privacy Service LTD c/o Dynadot Tech Postal Code: 94401 Tech State/Province: California Updated Date: 2024-08-08T16:33:46Z Updated Date: 2024-08-08T16:34:27.0Z
references
https://blog.malwarebytes.org/intelligence/2016/03/teslacrypt-spam-campaign-unpaid-issue/, 2021-09-21-Curriculo-IOCs.txt, https://wallpapers-nature.com/tsara-brashears/urlscan-io, alohatube.xyz, https://www.anyxxxtube.net/search-porn/tsara-brashears/, http://alohatube.xyz/search/tsara-brashears, https://www.pornhub.com/gifs/search?search=tsara+lynn+brashears+lesbian, ww.google.com.uy, https://alohatube.xyz/search/tsara-brashears, https://wallpapers-nature.com/%20tsara-brashears/urlscan-io, https://polling.portal.gov.bd/js/npc.script.js, polling.portal.gov.bd, https://polling.portal.gov.bd/js/npop.script.js, http://watchhers.net/index.php, https://brandyallen.com/2022/11/23/sexy, m.pornsexer.xxx.3.1.adiosfil.roksit.net, http://park.above.com/jr.php?gz=DjDNgvDQ0WlpBALxevxSvkF3jBH95b5riUvmgFjb1tbPDV06suYFlRcPA34ufLE5UZ8spiM7ya7tRXR8nLUgk920DSaIXniiR5hkoveznG%20mez7OU5R%20HKIczV475LuRwxm3J1pcRSpQcePtF/4aD%20frLO%205mYc0Maj8Z1IwBeAMESc9Gk3BzCkGUHNVeCAZ9vZrQhEeVvN%20QVBAu1boZNJTnvCAP0lB5ebMSP92bFHD/ItyL53LoVDSYWMd64KTNMMJaXE0kZVqQn/%20STriQbrA6cmW3Xj4sAJ3XXEbNNJzTbIvgsy00PlKWInEUK/iXzVecaBsXg3vkUcvkeM3HPPIajaBexXO7ATYz/qTeKAksI9l2IoDAsn0S9BYCTuP8uTYdgJAv0LO%20MkNBOrSqJnFQzTlNxG4NRSP6K4VDWklVPpCwQc/s/AfrwIdLcdrV6CQDLaluG1naOjXDc, http://nhrc.portal.gov.bd/sites/default/files/files/nhrc.portal.gov.bd/page/348ec5eb_22f8_4754_bb62_6a0d15ba1513/Study-Report-on-Sexual-Offences_Final.pdf, https://twitter.com/PORNO_SEXYBABES, https://alohatube.xyz/search/sex-mom-dog-animal, https://www.colorfulbox.jp/, Hybrid Analysis, Any.run, OTX AlienVault, Urlscan, UrlVoid, http://emrd.gov.bd/dead.php, http://titasgas.portal.gov.bd/dead.php, http://mincom.gov.bd/dead.php, http://cabinet.gov.bd/dead.php
subdomains count
11

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 5 years ago · Last seen 2 months ago
Appeared in 6 threat reports