DomainHighVerifiedSignal 100/100

`xnhauvietnam.vietnamddns.com`

First Seen

Jul 17, 2025

Last Seen

Mar 23, 2026

Jul 17

First Seen

333d ago

Mar 23

Last Seen

85d ago

Reports

source reports

99%

Confidence

high

Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

99%

Signal Score

100 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

22 techniques

Feed Intelligence Summary

6 reports99% confidence

Source reports

99%

Confidence score

Category tags

active scanningadbhoney honeypotattackbotnetbrute forcecisco devicecisco exploitation attemptscommand and controlcommunication protocolcowrie attackcowrie honeypotcredential accesscredential stuffingdata exfiltrationdecoy systemdevice managementdgadionaea attackdionaea honeypotdistributed attacksenterprise networkingheralding protocol activityhoneytrap honeypotindicatorinitial accesslamplamp attacklamp server targetingmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork infrastructurenetwork intrusion attemptnetwork probingnetwork scanningnetwork securitynetwork service scanningprocess injectionreconnaissanceresearchedresource hijackingsentrypeer attacksentrypeer botnetsftp attacksip brute forcessh attackssh monitoringt1021t1040t1041t1055t1059t1071.001t1078t1110t1110.002t1189t1190t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat detectionthreat intelligencevoipvoip attack

Activity Timeline

1 total obs

Mar 23Mar 23

Threat Activity Heatmap

· Peak: 2026-03-23

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Intelligence SummaryAI Generated

The domain **xnhauvietnam.vietnamddns.com** has been identified as a critical indicator of compromise (IOC) associated with botnet and malware activities. First observed on July

Threat ScoreHigh Risk

100

SIGNAL

Signal Score

99%

Confidence

Reports

First seenJul 17, 2025

Last seenMar 23, 2026

Verified IOC

VirusTotal

Not checked

WHOIS

description: 2025-07-17T06:14:57.992Z Honeypot : Adbhoney : EventID/src_ip/src_url: adbhoney.session.file_downloadhttp://xnhauvietnam.vietnamddns.com/wget.sh
raw: Administrative city: DATA REDACTED Administrative country: DATA REDACTED Administrative state: DATA REDACTED Billing city: DATA REDACTED Billing country: DATA REDACTED Billing state: DATA REDACTED Create date: 2024-09-30 00:00:00 Domain name: vietnamddns.com Domain registrar id: 1910 Domain registrar url: https://www.cloudflare.com Expiry date: 2025-09-30 00:00:00 Name server 1: ingrid.ns.cloudflare.com Name server 2: jeremy.ns.cloudflare.com Query time: 2024-10-01 11:15:13 Registrant city: acfd0ee3752cd95d Registrant company: acfd0ee3752cd95d Registrant country: Vietnam Registrant email: cd44a235ca05ecbds@ Registrant fax: acfd0ee3752cd95d Registrant name: acfd0ee3752cd95d Registrant phone: acfd0ee3752cd95d Registrant state: e8c8e13068144f14 Registrant zip: acfd0ee3752cd95d Technical city: DATA REDACTED Technical country: DATA REDACTED Technical state: DATA REDACTED Update date: 2024-09-30 00:00:00

`xnhauvietnam.vietnamddns.com`

MITRE ATT&CK TTPs

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy