IOC Radar
DomainMediumSignal 0/100

www.tgsoft.it

Location
Trinidad and TobagoTrinidad and Tobago
First Seen
May 14, 2025
Last Seen
May 1, 2026
May 14
First Seen
406d ago
May 1
Last Seen
54d ago
3
Reports
source reports
0%
Confidence
medium
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

3 reports0% confidence
3
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched

Activity Timeline

1 total obs
May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC) pertains to the domain `www.tgsoft.it`, which has been explicitly whitelisted and carries an extremely low threat score of 0.0. This status signifies that the domain is considered benign and poses negligible risk to the organization's security posture. While `www.tgsoft.it` has appeared in certain threat intelligence feeds, its confirmed whitelisted status explicitly negates any association with malicious activity. Therefore, the mere inclusion of this domain i…

Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
3
Reports
First seenMay 14, 2025
Last seenMay 1, 2026

VirusTotal

Not checked

WHOIS

description
In the latest episode of the LNK forensic analysis series, we look at how a malicious file was linked to a Chinese-speaking threat actor, who then modified the file to target a powershell program.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 3 threat reports