IOC Radar
DomainMediumSignal 13/100

viva.com.do

Location
Dominican RepublicDominican Republic
First Seen
Aug 5, 2025
Last Seen
Jun 10, 2026
Aug 5
First Seen
322d ago
Jun 10
Last Seen
14d ago
1
Reports
source reports
13%
Confidence
medium
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
13%
Signal Score
13 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Feed Intelligence Summary

1 report13% confidence
1
Source reports
13%
Confidence score
Category tags
active scanactive scanningbad web botblog spambotnet activitybrute forcebrute force attackbrute-forcecredential accesscredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdenial of servicedominican republicexploitation activityexploited hosthackingidentity & access exploitationindicatorinjection activityinjection attacksiot securityiot targetedmalwarenetworkpassword attacksphishingreconnaissanceresearchedscannerspamsshssh attackt1059.003t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1499.001t1499.002t1595.001t1595.002t1595.003web app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
Jun 10Jun 10

Threat Activity Heatmap

· Peak: 2026-06-10
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The domain **viva.com.do**, originating from the Dominican Republic, has been identified as an active indicator of compromise (IOC) associated with multiple malicious activities. First observed on August

Threat ScoreLow Risk
13
SIGNAL
Signal Score
13%
Confidence
1
Reports
First seenAug 5, 2025
Last seenJun 10, 2026

VirusTotal

Not checked

WHOIS

registrar
Registrar NIC .DO (midominio.do)
creation date
2006-11-27T04:00:00
expiration date
2026-11-27T04:00:00
updated date
2021-11-19T19:15:26.517000
name servers
ns1.trilogy.net.do, ns2.trilogy.net.do
status
ok https://icann.org/epp#ok

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 10 months ago · Last seen 14 days ago
Appeared in 1 threat report