IOC Radar
DomainLowSignal 0/100

updates.homeftp.org

First Seen
Mar 4, 2025
Last Seen
Feb 19, 2026
Mar 4
First Seen
481d ago
Feb 19
Last Seen
129d ago
2
Reports
source reports
0%
Confidence
low
Found in 2 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

16 techniques

Feed Intelligence Summary

2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
botnetc2 domaincommand and controldata exfiltrationdistributed attacksindicatormalicious softwaremalwaremalware familynetworkprocess injectionremote servicesresearchedt1001t1001.001t1001.002t1021t1041t1055t1071t1071.001t1105t1486t1496t1499.002t1499.003t1565t1568t1568.002win32 malwarewindows malware

Activity Timeline

1 total obs
Feb 19Feb 19

Threat Activity Heatmap

· Peak: 2026-02-19
Less
More
Mon
Wed
Fri
Jun
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

This indicator of compromise (IOC), `updates.homeftp.org`, has been identified as benign and holds a very low-risk profile, as evidenced by its zero score and explicit whitelisting status. The presence of this domain in threat intelligence feeds, specifically the Appealer Whitelist Service and AlienVault OTX Feeds, primarily serves to confirm its non-malicious nature rather than signaling any hostile activity. Organizations can rest assured that this particular IOC does not represent an immediat…

Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenMar 4, 2025
Last seenFeb 19, 2026

VirusTotal

Not checked

WHOIS

description
Command and Control domains for malware known as Win32.Beaugrit.gen.AAA. These domains are extracted from malware sandbox reports using a Machine Learning model trained on a corpus of good and bad domains.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 4 months ago
Appeared in 2 threat reports