Malware Discoverer Github Homepage.

Daily Threat Intelligence Report

This report contains following information

1. Overall statistics
   1. Number of domains detected
   2. Number of domains detected by Google Safe Browsing
   3. IP address behind entry-level domains
   4. date of collection
2. Top 10 domain statistics
   1. count (number of redirection paths that contain this domain)
   2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
   3. registar
   4. organization
3. Top 10 IP statistics
   1. count
   2. location (city, country, region)
   3. hostname
   4. organization
4. Consolidated redirection path
   1. green: tier one domain
   2. yellow: tier two domain
   3. red: tier three domain

	num_domain	num_links	num_full_url	num_safebrowsing_malicious	num_vt_malicious	date	ip	user_agent
0	12	10	14	0	0	2020-11-01	37.48.65.151	Chrome

	tier	domain	count	registrar	name_servers	org
0	tier_1	hardcore-sex-geschichten.com	1	JarheadDomains.com LLC	NS1.DNSNUTS.COM	None
1	tier_1	orero.net	1	Rare Gem Domains LLC	NS1.DNSNUTS.COM	None
2	tier_1	h-scripts.com	1	SNAPNAMES 70, LLC	NS1.DNSNUTS.COM	None
3	tier_2	usd.ced-max.com	2	Amazon Registrar, Inc.	NS-1305.AWSDNS-35.ORG	Whois Privacy Service
4	tier_2	ww1.hardcore-sex-geschichten.com	1	JarheadDomains.com LLC	NS1.DNSNUTS.COM	None
5	tier_2	xml.sedodna.com	1	None	None	None
6	tier_2	click.expmediadirect.com	1	None	None	None
7	tier_2	usa.ced-max.com	1	Amazon Registrar, Inc.	NS-1305.AWSDNS-35.ORG	Whois Privacy Service
8	tier_2	pleasetrack.com	1	Name.com, Inc.	NS1DJS.NAME.COM	Domain Protection Services, Inc.
9	tier_2	dprtb.com	1	GoDaddy.com, LLC	NS1.DNSIMPLE.COM	Domains By Proxy, LLC
10	tier_3	irl.com	2	GoDaddy.com, LLC	NS-106.AWSDNS-13.COM	Domains By Proxy, LLC
11	tier_3	protects.s3.us-east-2.amazonaws.com	1	MarkMonitor, Inc.	R1.AMAZONAWS.COM	Amazon.com, Inc.

	ip	city	region	org	postal	country_name	tier	count	hostname
0	207.244.67.215	Manassas	Virginia	AS30633 Leaseweb USA, Inc.	20108	United States	tier_1	1	nan
1	185.107.56.57	Rotterdam	South Holland	AS43350 NForce Entertainment B.V.	3012	Netherlands	tier_1	1	nan
2	207.244.67.214	Manassas	Virginia	AS30633 Leaseweb USA, Inc.	20108	United States	tier_1	1	nan
3	54.225.132.253	Virginia Beach	Virginia	AS14618 Amazon.com, Inc.	23471	United States	tier_2	3	ec2-54-225-132-253.compute-1.amazonaws.com
4	91.195.240.136	Munich	Bavaria	AS47846 SEDO GmbH	80331	Germany	tier_2	1	nan
5	173.239.53.32	New York City	New York	AS27257 Webair Internet Development Company Inc.	10013	United States	tier_2	1	nan
6	198.134.116.30	New York City	New York	AS27257 Webair Internet Development Company Inc.	10013	United States	tier_2	1	nan
7	34.198.58.156	Virginia Beach	Virginia	AS14618 Amazon.com, Inc.	23471	United States	tier_2	1	ec2-34-198-58-156.compute-1.amazonaws.com
8	209.15.13.136	Toronto	Ontario	AS13768 Aptum Technologies	M5N	Canada	tier_2	1	nan
9	104.248.63.231	North Bergen	New Jersey	AS14061 DigitalOcean, LLC	07047	United States	tier_3	2	nan
10	52.219.104.16	Columbus	Ohio	AS16509 Amazon.com, Inc.	43085	United States	tier_3	1	s3-r-w.us-east-2.amazonaws.com

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website