DomainHighVerifiedSignal 86/100
yarn.sh
First Seen
Jun 12, 2026
Last Seen
Jun 21, 2026
Found in 207 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
95%
Signal Score
86 / 100
IDS Rule
Yes
Threat Context
Feed Intelligence Summary
207 reports95% confidence
Activity Timeline
Jun 21Jun 12
Threat Activity Heatmap
· Peak: 2026-06-13LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
53
Critical
30d
207
Critical
3mo
207
Critical
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
95%
Confidence
207
Reports
First seenJun 12, 2026
Last seenJun 21, 2026
Verified IOC
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 13 days ago · Last seen 4 days ago
Appeared in 207 threat reports from 10 sources
Associated with: APT10, Kimsuky, Turla
Used by malware: Mozi, XWorm, QuasarRAT, Nanocore, XMRig, Remcos, AsyncRAT, FormBook, AgentTesla, Mirai, Vidar, Metasploit, Sliver, Fscan, Gh0st RAT, Stealc