DomainMediumSignal 100/100

`thaus.top`

Location

Romania

First Seen

Jul 27, 2023

Last Seen

Dec 3, 2025

Jul 27

First Seen

1050d ago

Dec 3

Last Seen

190d ago

Reports

source reports

99%

Confidence

medium

Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

99%

Signal Score

100 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

35 techniques

Feed Intelligence Summary

11 reports99% confidence

Source reports

99%

Confidence score

Category tags

abuseadres urladresy urlas numberawasta elfbotnetc startccro asnas39668claycommand and controlcountry adatadata exfiltrationdata sizedgc4ph bazadistributed attacksframe idfuturegovernment websitehashhomehttp attackhttp requesti aplicaiiilo o2oindicatorinformation warfareingress tool transferintersat srlipv4jeli pliklayton m0355liczba prbekmalicious linksmalicious softwaremalwaremethod getmime typemobile appmobile app reconnaissancemobile application attackmtb zakaeniename zakladnazwanazwa httpsnetworknews manipulationo poniejodcisk palcaojsresopaginpani obroczyniphishingplikplik sha256plikipolandpolandpoland aspolish governmentpotential vulnerability exploitationpotential-c2process injectionrealizare sitereferendum relatedresearchedrolaromaniaromanian targetsanselosanselo targetscripting attacksservicii webseychellessizeskopiujskrtsocial engineeringssdeept1055t1059.004t1059.007t1068t1071.001t1105t1133t1189t1190t1195.002t1199t1203t1204.001t1486t1496t1499.002t1499.003t1565t1566t1566.003t1567t1573t1583t1586t1588t1588.006t1589.002t1590.002t1590.003t1590.004t1592t1592.002t1592.004t1595t1598threatfox iocstrojan malwareudostpnijukryj prbkivhashweb attackweb exploitationweb securitywebsite reconnaissancezoliwymzrzuty ekranuzwizane z

Activity Timeline

1 total obs

Dec 3Dec 3

Threat Activity Heatmap

· Peak: 2025-12-03

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Intelligence SummaryAI Generated

The domain **thaus.top**, originating from Romania, has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports. First observed on July

Threat ScoreHigh Risk

100

SIGNAL

Signal Score

99%

Confidence

Reports

First seenJul 27, 2023

Last seenDec 3, 2025

VirusTotal

Not checked

WHOIS

description: Aplicații mobile, Â£1bn, â‚¬1.5bn â€µ¦ Ã€“ ôl iau i'r iddo.
domain rank: -1
raw: Administrative city: REDACTED FOR PRIVACY Administrative country: REDACTED FOR PRIVACY Administrative state: REDACTED FOR PRIVACY Create date: 2025-05-02 00:00:00 Domain name: thaus.top Domain registrar id: 3863 Domain registrar url: http://www.wdomain.com Expiry date: 2026-05-02 00:00:00 Name server 1: ns2.domainnamedns.com Name server 2: ns1.domainnamedns.com Query time: 2025-05-03 11:09:46 Registrant city: 1f8f4166599d23ee Registrant company: 1f8f4166599d23ee Registrant country: Hong Kong Registrant email: 29e2c061f3c9524es@ Registrant fax: 31d1617d95c9a75c Registrant name: 1f8f4166599d23ee Registrant phone: 31d1617d95c9a75c Registrant state: b6596fc52e556319 Registrant zip: 1f8f4166599d23ee Technical city: REDACTED FOR PRIVACY Technical country: REDACTED FOR PRIVACY Technical state: REDACTED FOR PRIVACY
subdomains count: 2

`thaus.top`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy