Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 18:25:31 UTC

Threat Intelligence

3,032
Active IOCs
24
Geo-Blocked Origins
2
Dark Web Findings
2
DecoyPulse Triggers

Live Threat Feed

Critical Emotet botnet infrastructure detected — 4 C2 IPs blocked 21m ago
High New phishing campaign targeting UK financial services 1h ago
High Microsoft Exchange CVE-2026-21413 — patch available 28m ago
Medium RansomHub group claiming 3 new UK victims this week 20m ago
High Dark web: 2 credential sets matching monitored domains found 50m ago
Medium Cloudflare reports DDoS spike targeting .co.uk domains 1h ago
High NCSC advisory: increased targeting of UK SMBs by APT29 1h ago
Low SSL certificate for mail.company.co.uk expires in 14 days 1h ago
Informational New IOCs added to threat feed — 847 indicators 19m ago
Medium Anomalous BGP route change affecting UK ISP backbone 45m ago

MITRE ATT&CK Heatmap

Initial Access 45
Execution 38
Persistence 57
Privilege Escalation 81
Defence Evasion 22
Credential Access 28
Discovery 52
Lateral Movement 12
Collection 45
Command and Control 53
Exfiltration 13
Impact 20

Top Attack Origins

CountryEvents
NG Nigeria 450
IR Iran 297
FR France 265
RU Russia 183
US United States 172
DE Germany 111
CN China 109
VN Vietnam 86
GB United Kingdom 80
IN India 65

Indicators of Compromise (IOCs)

Type Value Source Status First Seen Last Seen Hits
IPv4 91.38.195.141 AbuseIPDB Active 2026-06-20 2026-07-09 28
Domain hack-307.top NCSC Feed Active 2026-06-25 2026-07-10 32
Email support@threat-541.com VirusTotal Active 2026-06-17 2026-07-10 3
URL https://91.104.127.18/payload.exe NCSC Feed Under Review 2026-06-14 2026-07-08 3
Domain exfil-247.cn AlienVault OTX Active 2026-07-01 2026-07-09 11
IPv4 103.49.216.187 VirusTotal Active 2026-06-26 2026-07-10 39
Hash (SHA256) 865637168c053811602da7fd5b4726d2 Cyber-Defence Intel Active 2026-06-26 2026-07-11 41
IPv4 194.151.62.237 Cyber-Defence Intel Active 2026-06-12 2026-07-10 7
Domain drop-395.ru AlienVault OTX Active 2026-06-18 2026-07-10 13
Domain phish-912.top Cyber-Defence Intel Active 2026-06-16 2026-07-08 23
URL https://57.156.49.84/payload.exe NCSC Feed Under Review 2026-06-11 2026-07-10 17
Domain bad-664.ru NCSC Feed Active 2026-06-29 2026-07-10 22
URL https://11.107.249.140/payload.exe VirusTotal Under Review 2026-06-13 2026-07-10 39
Domain hack-624.tk VirusTotal Under Review 2026-06-15 2026-07-10 44
Hash (SHA256) aa62839340f5d59c61973dad4819ec04 VirusTotal Expired 2026-06-20 2026-07-09 11
Email alert@threat-591.com MISP Community Active 2026-06-23 2026-07-10 26
Email admin@threat-379.com NCSC Feed Active 2026-07-01 2026-07-09 34
URL https://14.187.127.208/payload.exe AlienVault OTX Expired 2026-06-25 2026-07-11 35
URL https://36.131.219.21/payload.exe AbuseIPDB Under Review 2026-07-04 2026-07-08 46
Hash (SHA256) f554b3a96a5395ef9c7f743474c63d69 AlienVault OTX Under Review 2026-06-25 2026-07-10 11
Domain exfil-696.tk AlienVault OTX Under Review 2026-07-05 2026-07-10 41
Email info@threat-360.com Cyber-Defence Intel Expired 2026-07-07 2026-07-11 22
IPv4 103.245.216.45 Cyber-Defence Intel Active 2026-06-28 2026-07-11 47
Hash (SHA256) 4d99b57333840a87f1152dd015a05514 AlienVault OTX Active 2026-06-14 2026-07-10 7
Email support@threat-587.com AbuseIPDB Expired 2026-06-11 2026-07-10 9
IPv4 185.215.220.32 MISP Community Active 2026-06-19 2026-07-09 17
Domain phish-535.cn AlienVault OTX Active 2026-06-22 2026-07-09 21
Domain bad-939.cc AbuseIPDB Under Review 2026-07-03 2026-07-11 28
IPv4 91.207.195.51 MISP Community Expired 2026-06-27 2026-07-11 41
URL https://42.207.166.189/payload.exe NCSC Feed Active 2026-06-16 2026-07-09 7