{
  "type": "Domain",
  "indicator": "steamcomnnunity.cc",
  "general": {
    "sections": [
      "general",
      "geo",
      "url_list",
      "passive_dns",
      "malware",
      "whois",
      "http_scans"
    ],
    "whois": "http://whois.domaintools.com/steamcomnnunity.cc",
    "alexa": "http://www.alexa.com/siteinfo/steamcomnnunity.cc",
    "indicator": "steamcomnnunity.cc",
    "type": "domain",
    "type_title": "Domain",
    "validation": [],
    "base_indicator": {
      "id": 4297764734,
      "indicator": "steamcomnnunity.cc",
      "type": "domain",
      "title": "",
      "description": "",
      "content": "",
      "access_type": "public",
      "access_reason": ""
    },
    "pulse_info": {
      "count": 1,
      "pulses": [
        {
          "id": "69d45715d6b6bd82356b2bd8",
          "name": "URLert Daily Threat Intel \u2014 2026-04-07",
          "description": "URLert Daily Threat Intel \u2014 2026-04-07\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 88 | Indicators: 164\nConfirmed: 20 | Likely: 61 | Domain intel: 7\nTop threats: Phishing (78), Malvertising (4), Unknown (2), Malware Hosting (2), Hacking Tool (1)\nDomains: 3my.live, amazon.co, aurelaboutique.co, awigkz.info, beastara.com, besowin156.pro, bitbyea.com, blogspot.com, byh.cc, clickspulse.online, cmacked.com, com-hs.in, ct.ws, dao-re.top, darkvps...\n\n88 unique threats producing 164 actionable indicators. Generated by URLert automated threat intelligence.",
          "modified": "2026-05-07T01:01:09.875000",
          "created": "2026-04-07T01:00:05.086000",
          "tags": [
            "2dehands",
            "account-recovery-fraud",
            "account-theft",
            "ad-network-redirector",
            "ad-redirector",
            "adobe-impersonation",
            "adult-content",
            "adult-content-lure",
            "adult-scam",
            "advance-fee-scam",
            "affiliate-tracking",
            "amazon",
            "android-malware",
            "anonymous-hosting",
            "anti-analysis",
            "app-impersonation",
            "apple-airpods-max",
            "asset-theft",
            "automated-scan",
            "blogspot-com",
            "brand-impersonation",
            "browser-hijacking",
            "bulletproof-hosting",
            "camera-access",
            "celebrity-impersonation",
            "cloudflare-pages",
            "content-hiding",
            "content-locking",
            "controlled-substances",
            "counterfeit-site",
            "cracked-software",
            "credential-harvesting",
            "credential-theft",
            "crypto-scam",
            "cryptocurrency-payments",
            "cryptocurrency-scam",
            "daily-threat-intel",
            "dating-scam",
            "deceptive-domain",
            "deceptive-financial-platform",
            "deceptive-front",
            "deceptive-infrastructure",
            "deceptive-longevity",
            "deceptive-practices",
            "deceptive-redirect",
            "deceptive-reviews",
            "deceptive-security-claims",
            "deceptive-site",
            "denmark",
            "deposit-theft",
            "disposable-domain",
            "dji",
            "dmca-ignored",
            "domain-classification",
            "drm-circumvention",
            "e-commerce-scam",
            "ecommerce-sector",
            "education",
            "education-sector",
            "email-credential-harvesting",
            "fake-app-store",
            "fake-contest-lure",
            "fake-financial-credentials",
            "fake-giveaway",
            "fake-government-grants",
            "fake-login",
            "fake-login-pages",
            "fake-login-portal",
            "fake-payment",
            "fake-prize-scam",
            "fake-shop",
            "fake-statistics",
            "fake-store",
            "fake-storefront",
            "fake-trading",
            "fake-trading-platform",
            "financial-fraud",
            "financial-information-harvesting",
            "financial-scam",
            "financial-sector",
            "fraudulent-charges",
            "fraudulent-crypto-investment",
            "fraudulent-marketplace",
            "fraudulent-platform",
            "fund-theft",
            "gambling-scam",
            "game-hacking",
            "game-mods",
            "gaming-scam",
            "google-forms",
            "google-login",
            "google-maps-impersonation",
            "government-impersonation",
            "high-risk-tld",
            "highway-6",
            "hyip",
            "iaet-bank",
            "illegal-content",
            "illicit-marketplace",
            "information-harvesting",
            "instagram-phishing",
            "investment-scam",
            "iphone-scam",
            "israel",
            "job-scam",
            "leroy-merlin",
            "lidl",
            "live-video-chat",
            "login-form",
            "logistics-sector",
            "lottery-scam",
            "low-price-scam",
            "macos-malware",
            "malicious-ad-network",
            "malicious-advertising-network",
            "malicious-redirect",
            "malicious-redirector",
            "malvertising",
            "malware",
            "malware-distribution",
            "maryland-mva",
            "microsoft-phishing",
            "microsoft-sharepoint",
            "multi-redirect",
            "namecheap",
            "nebula-x",
            "netlify-abuse",
            "new-domain",
            "newly-registered",
            "newly-registered-domain",
            "no-withdrawal-scam",
            "north-carolina",
            "offshore-hosting",
            "online-crime",
            "online-gambling",
            "online-gambling-scam",
            "online-scam",
            "online-shopping-scam",
            "onlyfans-impersonation",
            "payment-harvesting",
            "payment-scam",
            "personal-information-harvesting",
            "phishing",
            "phishing-page",
            "phishing-redirect",
            "phishing-site",
            "pig-butchering",
            "ponynet",
            "ponzi-scheme",
            "pop-up-scam",
            "prediction-market",
            "pubg-mobile",
            "qr-code-scam",
            "random-subdomain",
            "redirect",
            "redirect-chain",
            "remote-script-execution",
            "remote-task-scam",
            "retail-scam",
            "revanced-impersonation",
            "risky-payment-methods",
            "roblox",
            "roblox-impersonation",
            "runescape",
            "scam",
            "scam-platform",
            "scam-website",
            "scareware",
            "sexually-explicit-content",
            "shortened-url",
            "social-engineering",
            "social-media-phishing",
            "steam",
            "steam-security-bypass",
            "steroid-sales",
            "survey-scam",
            "suspicious-redirects",
            "t-mobile",
            "task-based-investment-scam",
            "task-based-scam",
            "task-scam",
            "telecommunications",
            "texas-dmv",
            "third-party-abuse",
            "timberland-impersonation",
            "tld-squatting",
            "traffic-redirection",
            "travel-scam",
            "typosquatting",
            "undelivered-orders",
            "union-ai",
            "university-of-brescia",
            "url-redirection",
            "url-shortener",
            "urlert",
            "usdt-storage",
            "valorant",
            "verified-scam",
            "whatsapp-impersonation",
            "youtube"
          ],
          "references": [
            "https://urlert.com/domain/3my.live",
            "https://urlert.com/domain/amazon.co",
            "https://urlert.com/domain/aurelaboutique.co",
            "https://urlert.com/domain/awigkz.info",
            "https://urlert.com/domain/beastara.com",
            "https://urlert.com/domain/besowin156.pro",
            "https://urlert.com/domain/bitbyea.com",
            "https://urlert.com/domain/blogspot.com",
            "https://urlert.com/domain/byh.cc",
            "https://urlert.com/domain/clickspulse.online",
            "https://urlert.com/domain/cmacked.com",
            "https://urlert.com/domain/com-hs.in",
            "https://urlert.com/domain/ct.ws",
            "https://urlert.com/domain/dao-re.top",
            "https://urlert.com/domain/darkvps.pro",
            "https://urlert.com/domain/djiusa.com",
            "https://urlert.com/domain/getmysocial.com",
            "https://urlert.com/domain/gov-bnnkw.top",
            "https://urlert.com/domain/govanta.help",
            "https://urlert.com/domain/goveogr.cfd"
          ],
          "public": 1,
          "adversary": "",
          "targeted_countries": [],
          "malware_families": [],
          "attack_ids": [],
          "industries": [
            "Education",
            "Financial Services",
            "Government",
            "Hospitality",
            "Logistics / Supply Chain",
            "Media & Entertainment",
            "Media / Entertainment",
            "Retail / E-Commerce",
            "Technology",
            "Telecommunications"
          ],
          "TLP": "white",
          "cloned_from": null,
          "export_count": 1,
          "upvotes_count": 0,
          "downvotes_count": 0,
          "votes_count": 0,
          "locked": false,
          "pulse_source": "api",
          "validator_count": 0,
          "comment_count": 0,
          "follower_count": 0,
          "vote": 0,
          "author": {
            "username": "urlert_intel",
            "id": "386175",
            "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
            "is_subscribed": false,
            "is_following": false
          },
          "indicator_type_counts": {
            "domain": 52,
            "URL": 44,
            "hostname": 17
          },
          "indicator_count": 113,
          "is_author": false,
          "is_subscribing": null,
          "subscriber_count": 32,
          "modified_text": "24 days ago ",
          "is_modified": true,
          "groups": [],
          "in_group": false,
          "threat_hunter_scannable": false,
          "threat_hunter_has_agents": 1,
          "related_indicator_type": "domain",
          "related_indicator_is_active": 1
        }
      ],
      "references": [
        "https://urlert.com/domain/gov-bnnkw.top",
        "https://urlert.com/domain/3my.live",
        "https://urlert.com/domain/cmacked.com",
        "https://urlert.com/domain/com-hs.in",
        "https://urlert.com/domain/aurelaboutique.co",
        "https://urlert.com/domain/amazon.co",
        "https://urlert.com/domain/bitbyea.com",
        "https://urlert.com/domain/byh.cc",
        "https://urlert.com/domain/blogspot.com",
        "https://urlert.com/domain/darkvps.pro",
        "https://urlert.com/domain/getmysocial.com",
        "https://urlert.com/domain/ct.ws",
        "https://urlert.com/domain/dao-re.top",
        "https://urlert.com/domain/goveogr.cfd",
        "https://urlert.com/domain/besowin156.pro",
        "https://urlert.com/domain/beastara.com",
        "https://urlert.com/domain/govanta.help",
        "https://urlert.com/domain/clickspulse.online",
        "https://urlert.com/domain/awigkz.info",
        "https://urlert.com/domain/djiusa.com"
      ],
      "related": {
        "alienvault": {
          "adversary": [],
          "malware_families": [],
          "industries": []
        },
        "other": {
          "adversary": [],
          "malware_families": [],
          "industries": [
            "Hospitality",
            "Retail / e-commerce",
            "Technology",
            "Media / entertainment",
            "Financial services",
            "Government",
            "Logistics / supply chain",
            "Education",
            "Media & entertainment",
            "Telecommunications"
          ]
        }
      }
    },
    "false_positive": []
  },
  "geo": {},
  "geo_ipapicom": {},
  "pulse_count": 1,
  "pulses": [
    {
      "id": "69d45715d6b6bd82356b2bd8",
      "name": "URLert Daily Threat Intel \u2014 2026-04-07",
      "description": "URLert Daily Threat Intel \u2014 2026-04-07\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 88 | Indicators: 164\nConfirmed: 20 | Likely: 61 | Domain intel: 7\nTop threats: Phishing (78), Malvertising (4), Unknown (2), Malware Hosting (2), Hacking Tool (1)\nDomains: 3my.live, amazon.co, aurelaboutique.co, awigkz.info, beastara.com, besowin156.pro, bitbyea.com, blogspot.com, byh.cc, clickspulse.online, cmacked.com, com-hs.in, ct.ws, dao-re.top, darkvps...\n\n88 unique threats producing 164 actionable indicators. Generated by URLert automated threat intelligence.",
      "modified": "2026-05-07T01:01:09.875000",
      "created": "2026-04-07T01:00:05.086000",
      "tags": [
        "2dehands",
        "account-recovery-fraud",
        "account-theft",
        "ad-network-redirector",
        "ad-redirector",
        "adobe-impersonation",
        "adult-content",
        "adult-content-lure",
        "adult-scam",
        "advance-fee-scam",
        "affiliate-tracking",
        "amazon",
        "android-malware",
        "anonymous-hosting",
        "anti-analysis",
        "app-impersonation",
        "apple-airpods-max",
        "asset-theft",
        "automated-scan",
        "blogspot-com",
        "brand-impersonation",
        "browser-hijacking",
        "bulletproof-hosting",
        "camera-access",
        "celebrity-impersonation",
        "cloudflare-pages",
        "content-hiding",
        "content-locking",
        "controlled-substances",
        "counterfeit-site",
        "cracked-software",
        "credential-harvesting",
        "credential-theft",
        "crypto-scam",
        "cryptocurrency-payments",
        "cryptocurrency-scam",
        "daily-threat-intel",
        "dating-scam",
        "deceptive-domain",
        "deceptive-financial-platform",
        "deceptive-front",
        "deceptive-infrastructure",
        "deceptive-longevity",
        "deceptive-practices",
        "deceptive-redirect",
        "deceptive-reviews",
        "deceptive-security-claims",
        "deceptive-site",
        "denmark",
        "deposit-theft",
        "disposable-domain",
        "dji",
        "dmca-ignored",
        "domain-classification",
        "drm-circumvention",
        "e-commerce-scam",
        "ecommerce-sector",
        "education",
        "education-sector",
        "email-credential-harvesting",
        "fake-app-store",
        "fake-contest-lure",
        "fake-financial-credentials",
        "fake-giveaway",
        "fake-government-grants",
        "fake-login",
        "fake-login-pages",
        "fake-login-portal",
        "fake-payment",
        "fake-prize-scam",
        "fake-shop",
        "fake-statistics",
        "fake-store",
        "fake-storefront",
        "fake-trading",
        "fake-trading-platform",
        "financial-fraud",
        "financial-information-harvesting",
        "financial-scam",
        "financial-sector",
        "fraudulent-charges",
        "fraudulent-crypto-investment",
        "fraudulent-marketplace",
        "fraudulent-platform",
        "fund-theft",
        "gambling-scam",
        "game-hacking",
        "game-mods",
        "gaming-scam",
        "google-forms",
        "google-login",
        "google-maps-impersonation",
        "government-impersonation",
        "high-risk-tld",
        "highway-6",
        "hyip",
        "iaet-bank",
        "illegal-content",
        "illicit-marketplace",
        "information-harvesting",
        "instagram-phishing",
        "investment-scam",
        "iphone-scam",
        "israel",
        "job-scam",
        "leroy-merlin",
        "lidl",
        "live-video-chat",
        "login-form",
        "logistics-sector",
        "lottery-scam",
        "low-price-scam",
        "macos-malware",
        "malicious-ad-network",
        "malicious-advertising-network",
        "malicious-redirect",
        "malicious-redirector",
        "malvertising",
        "malware",
        "malware-distribution",
        "maryland-mva",
        "microsoft-phishing",
        "microsoft-sharepoint",
        "multi-redirect",
        "namecheap",
        "nebula-x",
        "netlify-abuse",
        "new-domain",
        "newly-registered",
        "newly-registered-domain",
        "no-withdrawal-scam",
        "north-carolina",
        "offshore-hosting",
        "online-crime",
        "online-gambling",
        "online-gambling-scam",
        "online-scam",
        "online-shopping-scam",
        "onlyfans-impersonation",
        "payment-harvesting",
        "payment-scam",
        "personal-information-harvesting",
        "phishing",
        "phishing-page",
        "phishing-redirect",
        "phishing-site",
        "pig-butchering",
        "ponynet",
        "ponzi-scheme",
        "pop-up-scam",
        "prediction-market",
        "pubg-mobile",
        "qr-code-scam",
        "random-subdomain",
        "redirect",
        "redirect-chain",
        "remote-script-execution",
        "remote-task-scam",
        "retail-scam",
        "revanced-impersonation",
        "risky-payment-methods",
        "roblox",
        "roblox-impersonation",
        "runescape",
        "scam",
        "scam-platform",
        "scam-website",
        "scareware",
        "sexually-explicit-content",
        "shortened-url",
        "social-engineering",
        "social-media-phishing",
        "steam",
        "steam-security-bypass",
        "steroid-sales",
        "survey-scam",
        "suspicious-redirects",
        "t-mobile",
        "task-based-investment-scam",
        "task-based-scam",
        "task-scam",
        "telecommunications",
        "texas-dmv",
        "third-party-abuse",
        "timberland-impersonation",
        "tld-squatting",
        "traffic-redirection",
        "travel-scam",
        "typosquatting",
        "undelivered-orders",
        "union-ai",
        "university-of-brescia",
        "url-redirection",
        "url-shortener",
        "urlert",
        "usdt-storage",
        "valorant",
        "verified-scam",
        "whatsapp-impersonation",
        "youtube"
      ],
      "references": [
        "https://urlert.com/domain/3my.live",
        "https://urlert.com/domain/amazon.co",
        "https://urlert.com/domain/aurelaboutique.co",
        "https://urlert.com/domain/awigkz.info",
        "https://urlert.com/domain/beastara.com",
        "https://urlert.com/domain/besowin156.pro",
        "https://urlert.com/domain/bitbyea.com",
        "https://urlert.com/domain/blogspot.com",
        "https://urlert.com/domain/byh.cc",
        "https://urlert.com/domain/clickspulse.online",
        "https://urlert.com/domain/cmacked.com",
        "https://urlert.com/domain/com-hs.in",
        "https://urlert.com/domain/ct.ws",
        "https://urlert.com/domain/dao-re.top",
        "https://urlert.com/domain/darkvps.pro",
        "https://urlert.com/domain/djiusa.com",
        "https://urlert.com/domain/getmysocial.com",
        "https://urlert.com/domain/gov-bnnkw.top",
        "https://urlert.com/domain/govanta.help",
        "https://urlert.com/domain/goveogr.cfd"
      ],
      "public": 1,
      "adversary": "",
      "targeted_countries": [],
      "malware_families": [],
      "attack_ids": [],
      "industries": [
        "Education",
        "Financial Services",
        "Government",
        "Hospitality",
        "Logistics / Supply Chain",
        "Media & Entertainment",
        "Media / Entertainment",
        "Retail / E-Commerce",
        "Technology",
        "Telecommunications"
      ],
      "TLP": "white",
      "cloned_from": null,
      "export_count": 1,
      "upvotes_count": 0,
      "downvotes_count": 0,
      "votes_count": 0,
      "locked": false,
      "pulse_source": "api",
      "validator_count": 0,
      "comment_count": 0,
      "follower_count": 0,
      "vote": 0,
      "author": {
        "username": "urlert_intel",
        "id": "386175",
        "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png",
        "is_subscribed": false,
        "is_following": false
      },
      "indicator_type_counts": {
        "domain": 52,
        "URL": 44,
        "hostname": 17
      },
      "indicator_count": 113,
      "is_author": false,
      "is_subscribing": null,
      "subscriber_count": 32,
      "modified_text": "24 days ago ",
      "is_modified": true,
      "groups": [],
      "in_group": false,
      "threat_hunter_scannable": false,
      "threat_hunter_has_agents": 1,
      "related_indicator_type": "domain",
      "related_indicator_is_active": 1
    }
  ],
  "error": null,
  "vt": {
    "error": "VirusTotal rate limit reached. Try again shortly.",
    "indicator": "steamcomnnunity.cc",
    "type": "Domain"
  },
  "abuseipdb": null,
  "urlhaus": {
    "indicator": "steamcomnnunity.cc",
    "found": false,
    "verdict": "clean",
    "urls": [],
    "error": null
  },
  "from_cache": true,
  "_cached_at": 1780256760.363152
}