IOC Radar
DomainMediumSignal 67/100

tracking-mydhl.com

Location
MexicoMexico
First Seen
Apr 20, 2024
Last Seen
May 2, 2026
Apr 20
First Seen
782d ago
May 2
Last Seen
39d ago
8
Reports
source reports
67%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
67%
Signal Score
67 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Feed Intelligence Summary

8 reports67% confidence
8
Source reports
67%
Confidence score
Category tags
accessactive scanadminasiaaustriabbkbec attemptbettingbhutanblueskybotnetbotnet activitybrbrand impersonationbrute forcecanadachemical & pharmaceuticalcmscommand and controlconfigcredential harvestingcredential stuffingcredential theftcrypto currencycryptocurrencycssdata exfiltrationdata store exposuredelivery service scamdetailsdhldhl phishing campaigndistributed attacksdomaindomainsexecutable fileexploitation activityexpressfinancefintechfleet managementfrancefraudfreight servicesgaminggermanygithubglobalgroupshtmlhttphttpshungaryidentity & access exploitationimagesindexindicatorinfoinformation technologyinfrastructure acquisitionreconnaissanceinjection activityiot securityipfsirelanditalymalicious linksmalicious softwaremalwaremaritime transportmedia & entertainmentmediummexiconetnetworkpagepassenger transportationphishingphishing attackphishing domainsphishing urlsphppioneerplpleskpolandprocess injectionragnarokrail transportransomwarerecaptcharesearchedretailromaniascamscams & fraudscriptshipping & logisticsslugsmssocial engineeringsoftware publishersupportsurface webt1055t1071.001t1071.004t1078t1189t1192t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1583t1583.001t1587.001t1588t1588.002t1588.004t1590.001t1598t1598.003telecommunicationthreat actortinymcetor nodetransportation and warehousingtransportation infrastructuretransportation technologytwitteruploadurlurlsweb securitywebsite

Activity Timeline

1 total obs
May 2May 2

Threat Activity Heatmap

· Peak: 2026-05-02
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
67
SIGNAL
Signal Score
67%
Confidence
8
Reports
First seenApr 20, 2024
Last seenMay 2, 2026

VirusTotal

Not checked

WHOIS

registrar
Squarespace Domains LLC
description
This page stores DHL phishing page IOCs. Legitimate website for the brand is https://www.dhl.com/ NOLA defense is tracking newly observed phishing websites. Follow us on twitter https://twitter.com/noladefense
domain rank
-1
raw
Creation Date: 2024-04-19T20:28:29Z DNSSEC: unsigned Domain Name: TRACKING-MYDHL.COM Domain Status: clientHold https://icann.org/epp#clientHold Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: pendingDelete https://icann.org/epp#pendingDelete Name Server: 31-172-83-11-TRACKING-MYDHL-COM.SQSP-PLACEHOLDER.COM Name Server: NS1-TRACKING-MYDHL-COM.SQSP-PLACEHOLDER.COM Name Server: NS2-TRACKING-MYDHL-COM.SQSP-PLACEHOLDER.COM Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: 1-646-693-5324 Registrar IANA ID: 3827 Registrar URL: http://squarespace.domains Registrar WHOIS Server: whois.squarespace.domains Registrar: Squarespace Domains LLC Registry Domain ID: 2873945986_DOMAIN_COM-VRSN Registry Expiry Date: 2025-04-19T20:28:29Z Updated Date: 2025-07-01T11:15:14Z
references
https://www.virustotal.com/gui/collection/9e06470d30593e11c8daad2157e0d4ef1ccce47787e2b5303846704767c26d6a
subdomains count
4

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 1 month ago
Appeared in 8 threat reports