IOC Radar
DomainMediumSignal 88/100

updatenewnet.com

Location
Iran, Islamic Republic ofIran, Islamic Republic of
First Seen
Nov 11, 2023
Last Seen
Feb 12, 2026
Nov 11
First Seen
951d ago
Feb 12
Last Seen
127d ago
9
Reports
source reports
88%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
88%
Signal Score
88 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

35 techniques

Feed Intelligence Summary

9 reports88% confidence
9
Source reports
88%
Confidence score
Category tags
active scanningaerospace & defenseagriusaptapt34asiaattacks-breachesbackbankingbladedfbotnetbrute forcec serverc2candirucitizen labcivil servicesclustercode injectioncommand and controlcommentcommunication technologiescredential accesscredential harvestingcredential stuffingcredit card servicescrowdstrikecuboid sandstormdata encryptiondata exfiltrationdefensedefense contractingdefense logisticsdefense systemsdefense technologydeploys noveldiscorddistributed attacksdistribution managementelectronic health recordsembassyenergyenergy distributioneset researchfigurefinancefinancial servicesfinancial technologyfirstfleet managementforeign affairsfreight forwardingfreight servicesftpftp brute forcegovernment technologygray sandstormhealth care and social assistancehealth information technologyhealthcare information systemshospital managementicmpimaploaderimperial kittenindicatorinformation technologyinfrastructure acquisitionreconnaissanceinventory managementiociranit infrastructureit servicekamrankarkadannkittenlaterlateral movementlemon sandstormlogistics technologymalicious linksmalicious softwaremalwaremanualmaritime transportmediamedical servicesmicrosoft excelmiddlemiddle eastmilitary operationsmobilemobile carriersmobile networksmobile securitymosses staffmozimuddywaternational securitynetscannetworknetwork probingnetwork protocolnetwork scanningoil & gaspaexecpaexec utilitypassenger transportationpatient carepayment processingphishingphishing attackpower generationpower systemsprocess injectionpublic administrationpublic infrastructurepublic policypumpkin sandstormpythonrail transportreconnaissanceregulatory agenciesremote accessremote servicesrenewable energyresearchedscanning activityshipping servicessocial engineeringsoftware developmentssh attackstrongsugarrushsupply chain managementt1016t1021t1021.001t1021.002t1027t1055t1059t1059.001t1059.007t1064t1068t1071t1071.001t1076t1077t1105t1110t1110.002t1190t1204.001t1486t1496t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003ta456targettechtelecom servicestelecommunicationstipstortoiseshelltransportation and warehousingtransportation infrastructuretransportation managementtransportation technologytwitterunc1549uuidvoid manticorewarehouse operationswatering holewealth managementweb compromiseweb exploitationweb securityyellow liderc

Activity Timeline

1 total obs
Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

The domain **updatenewnet.com** has emerged as a significant indicator of compromise (IOC) linked to advanced persistent threat (APT) activities originating from Iran. First observed on November

Threat ScoreHigh Risk
88
SIGNAL
Signal Score
88%
Confidence
9
Reports
First seenNov 11, 2023
Last seenFeb 12, 2026

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 4 months ago
Appeared in 9 threat reports