Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 14:37:50 UTC

Threat Intelligence

2,816
Active IOCs
15
Geo-Blocked Origins
3
Dark Web Findings
0
DecoyPulse Triggers

Live Threat Feed

Critical Emotet botnet infrastructure detected — 4 C2 IPs blocked 49m ago
High New phishing campaign targeting UK financial services 1h ago
High Microsoft Exchange CVE-2026-21413 — patch available 48m ago
Medium RansomHub group claiming 3 new UK victims this week 35m ago
High Dark web: 2 credential sets matching monitored domains found 1h ago
Medium Cloudflare reports DDoS spike targeting .co.uk domains 1h ago
High NCSC advisory: increased targeting of UK SMBs by APT29 26m ago
Low SSL certificate for mail.company.co.uk expires in 14 days 24m ago
Informational New IOCs added to threat feed — 847 indicators 56m ago
Medium Anomalous BGP route change affecting UK ISP backbone 26m ago

MITRE ATT&CK Heatmap

Initial Access 75
Execution 22
Persistence 56
Privilege Escalation 37
Defence Evasion 49
Credential Access 69
Discovery 29
Lateral Movement 80
Collection 60
Command and Control 69
Exfiltration 78
Impact 37

Top Attack Origins

CountryEvents
UA Ukraine 383
VN Vietnam 364
US United States 347
GB United Kingdom 346
KP North Korea 332
NL Netherlands 307
RU Russia 295
RO Romania 184
CN China 106
FR France 95

Indicators of Compromise (IOCs)

Type Value Source Status First Seen Last Seen Hits
Email admin@threat-288.com VirusTotal Active 2026-05-20 2026-05-26 2
URL https://16.160.145.189/payload.exe MISP Community Active 2026-05-25 2026-05-27 39
Hash (SHA256) abd6a21123ba083a10ee0f1bdfd1963c MISP Community Active 2026-05-20 2026-05-25 12
Email alert@threat-684.com AlienVault OTX Active 2026-05-23 2026-05-26 3
Domain malware-800.top AbuseIPDB Under Review 2026-04-29 2026-05-27 15
URL https://63.101.62.244/payload.exe VirusTotal Active 2026-05-23 2026-05-27 31
IPv4 185.88.220.15 AbuseIPDB Under Review 2026-05-15 2026-05-25 28
Domain drop-362.ru AlienVault OTX Active 2026-05-07 2026-05-26 13
IPv4 194.92.62.243 Cyber-Defence Intel Under Review 2026-05-10 2026-05-27 22
IPv4 103.134.216.1 AlienVault OTX Expired 2026-05-24 2026-05-24 21
Hash (SHA256) f21c74751616caaddeba4838f7577abd NCSC Feed Active 2026-05-21 2026-05-24 35
Email security@threat-543.com AlienVault OTX Expired 2026-05-14 2026-05-25 17
IPv4 185.129.220.136 AbuseIPDB Under Review 2026-05-04 2026-05-27 33
Email admin@threat-146.com AbuseIPDB Expired 2026-05-05 2026-05-26 16
Domain malware-967.top AlienVault OTX Expired 2026-05-06 2026-05-25 38
Domain exfil-938.cn MISP Community Active 2026-05-25 2026-05-25 44
Hash (SHA256) 25f5abf200b95fab527b845895fc965c Cyber-Defence Intel Active 2026-05-25 2026-05-27 24
Email alert@threat-278.com VirusTotal Under Review 2026-05-24 2026-05-26 21
URL https://71.105.82.225/payload.exe AbuseIPDB Under Review 2026-04-27 2026-05-25 39
Domain phish-539.cn AlienVault OTX Active 2026-05-04 2026-05-27 20
Email alert@threat-645.com MISP Community Active 2026-04-28 2026-05-25 2
Domain exfil-964.cn AlienVault OTX Active 2026-05-07 2026-05-27 3
Email alert@threat-196.com AbuseIPDB Active 2026-05-12 2026-05-27 19
URL https://50.157.176.246/payload.exe VirusTotal Active 2026-05-21 2026-05-26 41
Domain malware-190.top Cyber-Defence Intel Expired 2026-04-29 2026-05-25 22
URL https://16.193.62.159/payload.exe MISP Community Under Review 2026-05-22 2026-05-24 16
Domain malware-199.ru AbuseIPDB Under Review 2026-05-12 2026-05-25 7
Domain hack-611.top NCSC Feed Expired 2026-05-15 2026-05-25 42
URL https://60.155.101.250/payload.exe Cyber-Defence Intel Active 2026-05-01 2026-05-25 39
Domain malware-610.ru Cyber-Defence Intel Active 2026-05-23 2026-05-25 25