DomainMediumSignal 75/100
virtualspeechtherapists.com
Location
United StatesFirst Seen
Feb 19, 2026
Last Seen
Jun 6, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
75%
Signal Score
75 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
11 reports75% confidence
11
Source reports
75%
Confidence score
Category tags
abusech-threatfox-c2cactive scanactive scanningapplication layer protocolautomated analysisautomated attackautomated threatautomated threat detectionbad reputationblacklisted ip addressblock-or-filter-listblocked-connectionbotnet activitybotnet_c2brute forcebrute force attackbrute force attacksbrute force attemptbrute force attemptsbrute_force_attackc2c2 activityc2 communicationc2-activityc2_communicationcommand & controlcommunication protocolcompromised hostcompromised systemcredential accesscredential stuffingcredential_accessdata encryptiondata exfiltrationdata store exposuredatabase securityddosddos potentialddos preparationdns attackdns-tunnelingdugganusa researchencryptionexploitation activityftpftp brute forceftp-bruteforcehttp brute forcehttp scannerhttp scanninghttp-scanhttpshttps scanningidentity & access exploitationimapindicatorinfostealerinfrastructure acquisitionreconnaissanceinjection activityinjection attacksiocip-addresslateral movementmacsyncmalicious linksmalicious network activitymalicious softwaremalwaremalware activitymalware communicationmalware detectedmalware indicatorsmalware infectionmalware-indicatorsmalware_indicatorsnetworknetwork anomaliesnetwork intrusionnetwork intrusion attemptnetwork intrusion attemptsnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningnetwork_reconnaissancenetwork_trafficnorth americanovel iocnovel ioc detectednovel-iocos credential dumpingpassword attacksphishingpossible compromisepossible malwarepossible vulnerability exploitationpotential credential accesspotential exploitpotential malware activitypotential vulnerability exploitationpotential_intrusionprecogprocess injectionprotocol exploitationreconnaissanceremote accessremote access attemptsremote access trojanremote servicesresearchedsecurity operationsservice scansmtpsmtp-scanssh attackssh-bruteforcestealersuspicious-domainsuspicious-ipt1005t1016t1018t1021t1021.001t1021.002t1040t1046t1047t1053t1055t1059t1059.003t1068t1071t1071.001t1076t1077t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1204.001t1486t1499.002t1563t1565t1566.003t1573t1587.001t1589t1590.001t1595t1595.001t1595.002t1595.003telnet threatthreat actorthreat intelligencetor nodeunited statesvalid accountsvulnerability scanweb securityweb traffic
Activity Timeline
Jun 6Jun 6
Threat Activity Heatmap
· Peak: 2026-06-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
The domain **virtualspeechtherapists.com** has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports, with a medium confidence level. First observed on February
Threat ScoreHigh Risk
75
SIGNAL
Signal Score
75%
Confidence
11
Reports
First seenFeb 19, 2026
Last seenJun 6, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Unstoppable Domains Inc.
- creation date
- 2024-06-08T22:56:28
- expiration date
- 2026-06-08T22:56:28
- updated date
- 2026-02-19T10:41:29
- name servers
- IRMA.NS.CLOUDFLARE.COM, TREVOR.NS.CLOUDFLARE.COM
- emails
- [email protected]
- status
- clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited, clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 months ago · Last seen 15 days ago
Appeared in 11 threat reports