Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 15:51:37 UTC

Threat Intelligence

1,905
Active IOCs
12
Geo-Blocked Origins
1
Dark Web Findings
1
DecoyPulse Triggers

Live Threat Feed

Critical Emotet botnet infrastructure detected — 4 C2 IPs blocked 15m ago
High New phishing campaign targeting UK financial services 48m ago
High Microsoft Exchange CVE-2026-21413 — patch available 1h ago
Medium RansomHub group claiming 3 new UK victims this week 27m ago
High Dark web: 2 credential sets matching monitored domains found 11m ago
Medium Cloudflare reports DDoS spike targeting .co.uk domains 1h ago
High NCSC advisory: increased targeting of UK SMBs by APT29 52m ago
Low SSL certificate for mail.company.co.uk expires in 14 days 1h ago
Informational New IOCs added to threat feed — 847 indicators 23m ago
Medium Anomalous BGP route change affecting UK ISP backbone 1h ago

MITRE ATT&CK Heatmap

Initial Access 66
Execution 23
Persistence 32
Privilege Escalation 51
Defence Evasion 18
Credential Access 70
Discovery 12
Lateral Movement 38
Collection 70
Command and Control 10
Exfiltration 23
Impact 29

Top Attack Origins

CountryEvents
IN India 443
US United States 431
FR France 417
RO Romania 339
GB United Kingdom 339
NG Nigeria 329
NL Netherlands 329
IR Iran 227
UA Ukraine 203
VN Vietnam 187

Indicators of Compromise (IOCs)

Type Value Source Status First Seen Last Seen Hits
Email security@threat-291.com VirusTotal Expired 2026-05-01 2026-05-25 34
IPv4 45.5.148.190 AlienVault OTX Expired 2026-05-07 2026-05-24 11
IPv4 45.225.148.34 VirusTotal Active 2026-05-20 2026-05-26 2
IPv4 194.117.62.248 Cyber-Defence Intel Active 2026-05-11 2026-05-26 7
Hash (SHA256) 9f60aa62c06e5a4e7d23c93fff7b1fcc AbuseIPDB Active 2026-04-28 2026-05-25 25
Domain malware-277.tk Cyber-Defence Intel Active 2026-05-13 2026-05-27 46
Email security@threat-379.com Cyber-Defence Intel Under Review 2026-05-02 2026-05-27 41
URL https://50.222.112.223/payload.exe AlienVault OTX Active 2026-05-04 2026-05-26 5
Email support@threat-145.com VirusTotal Active 2026-05-24 2026-05-24 45
URL https://29.143.40.76/payload.exe Cyber-Defence Intel Under Review 2026-05-04 2026-05-26 32
Hash (SHA256) 290ebb3e5c4f72d8ae2e8f4ada65d262 AbuseIPDB Active 2026-05-19 2026-05-27 12
Email admin@threat-738.com NCSC Feed Expired 2026-05-13 2026-05-25 25
IPv4 91.233.195.12 VirusTotal Expired 2026-05-12 2026-05-25 23
Hash (SHA256) 2d5602738324e9190e9422ba8ec846af Cyber-Defence Intel Active 2026-05-11 2026-05-25 40
Hash (SHA256) 58ace4e227bb7ec9447d2f896e118346 AlienVault OTX Active 2026-05-21 2026-05-27 6
Hash (SHA256) 24c1008b217de57d0c3907fcffd6d0e4 Cyber-Defence Intel Expired 2026-05-08 2026-05-26 45
Hash (SHA256) 3ec883e029a3c93f01407ce9e03114f5 AlienVault OTX Active 2026-05-21 2026-05-25 32
Domain hack-315.cc VirusTotal Active 2026-05-16 2026-05-27 28
Email alert@threat-480.com AlienVault OTX Active 2026-05-11 2026-05-26 11
IPv4 45.84.148.242 Cyber-Defence Intel Active 2026-05-22 2026-05-24 3
IPv4 185.139.220.39 Cyber-Defence Intel Active 2026-05-08 2026-05-25 34
URL https://25.183.238.5/payload.exe NCSC Feed Under Review 2026-05-23 2026-05-27 17
Domain malware-872.cc Cyber-Defence Intel Active 2026-05-24 2026-05-26 41
Hash (SHA256) d4acc9c6ee42c6d95961987c273e3a85 AbuseIPDB Active 2026-05-15 2026-05-26 26
URL https://74.141.68.31/payload.exe AbuseIPDB Expired 2026-05-19 2026-05-26 15
Domain exfil-711.tk AbuseIPDB Expired 2026-05-04 2026-05-27 35
Domain phish-168.cn AbuseIPDB Under Review 2026-05-20 2026-05-25 36
URL https://84.166.27.91/payload.exe AbuseIPDB Active 2026-05-09 2026-05-26 42
IPv4 103.55.216.179 AlienVault OTX Expired 2026-05-07 2026-05-25 41
Domain evil-938.cn AlienVault OTX Active 2026-05-04 2026-05-26 20