DomainHighVerifiedSignal 86/100
sakura.sh
First Seen
Jun 5, 2026
Last Seen
Jun 16, 2026
Found in 289 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
95%
Signal Score
86 / 100
IDS Rule
Yes
Threat Context
Malware Families15
Tags
Feed Intelligence Summary
289 reports95% confidence
Activity Timeline
Jun 16Jun 5
Threat Activity Heatmap
· Peak: 2026-06-08LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
289
Critical
3mo
289
Critical
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
95%
Confidence
289
Reports
First seenJun 5, 2026
Last seenJun 16, 2026
Verified IOC
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 19 days ago · Last seen 8 days ago
Appeared in 289 threat reports from 10 sources
Associated with: APT10, Kimsuky, Turla
Used by malware: Mozi, FormBook, AgentTesla, Nanocore, XWorm, XMRig, QuasarRAT, AsyncRAT, Cobalt Strike, Stealc, Mirai, Vidar, Sliver, Fscan, Gh0st RAT