IOC Radar
DomainMediumSignal 100/100

www2.rakutenn.co.jp.aqej.cn

First Seen
Jan 12, 2022
Last Seen
Feb 12, 2026
Jan 12
First Seen
1611d ago
Feb 12
Last Seen
118d ago
7
Reports
source reports
99%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Feed Intelligence Summary

7 reports99% confidence
7
Source reports
99%
Confidence score
Category tags
abuseabuse reportbotnetbrand abusebrand impersonationcommand and controlcredential harvestingcredential theftdata exfiltrationdeceptive marketingdistributed attacksfraudulent websiteindicatorinfrastructure acquisitionreconnaissanceingress tool transfermalicious downloadmalicious linkmalicious linksmalicious softwaremalwaremalware deliverymalware distributionmalware hostingnetworkphishingphishing attackphishing campaignphishing domain detectionphishing kitprocess injectionresearchedrogue domainsocial engineeringsocial engineering attackspam campaignt1055t1071t1071.001t1105t1189t1192t1204t1204.001t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1583t1583.001t1587.001t1588t1588.002t1590.001t1598t1598.003typosquattingweb security

Activity Timeline

1 total obs
Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
7
Reports
First seenJan 12, 2022
Last seenFeb 12, 2026

VirusTotal

Not checked

WHOIS

description
Phishing, scams, all junk goes here.
raw
DNSSEC: unsigned Domain Name: aqej.cn Domain Status: clientHold Domain Status: clientTransferProhibited Domain Status: clientUpdateProhibited Expiration Time: 2025-08-13 09:30:08 Name Server: hadlee.ns.cloudflare.com Name Server: yew.ns.cloudflare.com Registrant Contact Email: [email protected] Registrant: 5085eb00d56536d1 Registration Time: 2024-08-13 09:30:08 Sponsoring Registrar: 阿里云计算有限公司(万网)

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 3 months ago
Appeared in 7 threat reports