IOC Radar
IPMediumSignal 63/100

103.110.65.157

Location
GermanyGermany
Frankfurt am Main, Hesse
ASN
AS26383
Baxet Group Inc
First Seen
Jun 28, 2025
Last Seen
Jan 30, 2026
Jun 28
First Seen
350d ago
Jan 30
Last Seen
135d ago
12
Reports
source reports
63%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
63%
Signal Score
63 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

43 techniques

Network Information

CountryDEGermany
RegionFrankfurt am Main, Hesse
ASNAS26383
OrganizationBaxet Group Inc

Feed Intelligence Summary

12 reports63% confidence
12
Source reports
63%
Confidence score
Category tags
abuseaccess controlactive scanningbotnetbotnet activity detectedbrute forcebrute force attackbrute force attacksc2c2 communicationcommand and controlcompromised hostscredential accesscredential stuffingdata exfiltrationddos preparationdistributed attackseuropeexploit attemptsftp brute forcegermanyhttp scanninghttps scanningindicatorlateral movementmalicious softwaremalwaremalware distributionnetworknetwork enumerationnetwork intrusionnetwork scanningnetwork securitypassword attacksprocess injectionprotocol exploitationproxy activityreconnaissanceresearchedscannersecurity policysmtp scanningssh attackt1003t1005t1016t1018t1021t1040t1043t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1083t1090t1090.001t1090.002t1090.003t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1497t1499.002t1499.003t1550t1552t1555t1556t1565t1573t1595.001t1595.002t1595.003telnet threatthreat prevention

Activity Timeline

1 total obs
Jan 30Jan 30

Threat Activity Heatmap

· Peak: 2026-01-30
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
63
SIGNAL
Signal Score
63%
Confidence
12
Reports
First seenJun 28, 2025
Last seenJan 30, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS26383
OrgBaxet Group Inc
Coords50.1109, 8.6821

VirusTotal

Not checked

WHOIS

raw
inetnum: 103.110.64.0 - 103.110.67.255 netname: CY-NETAXIS-20180228 country: CY org: ORG-NGL30-RIPE admin-c: AA44255-RIPE tech-c: AA44255-RIPE status: ALLOCATED PA mnt-lower: interlir-mnt mnt-routes: interlir-mnt mnt-domains: interlir-mnt mnt-by: RIPE-NCC-HM-MNT mnt-by: lir-cy-netaxis-1-MNT created: 2025-01-21T14:08:26Z last-modified: 2025-01-23T14:35:43Z source: RIPE organisation: ORG-NGL30-RIPE org-name: NETAXIS GROUP LTD country: CY org-type: LIR address: Tilemachou Kallona, 16 ARTEMIS COMPLEX 6, Flat/Office 103 address: 8036 address: Paphos address: CYPRUS phone: +357 9906 8737 admin-c: AA44255-RIPE tech-c: AA44255-RIPE abuse-c: AR77358-RIPE mnt-ref: lir-cy-netaxis-1-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: lir-cy-netaxis-1-MNT created: 2024-12-09T08:40:27Z last-modified: 2025-01-29T12:59:49Z source: RIPE # Filtered role: Admin address: CYPRUS address: Paphos address: 8220 address: Kalliades 19, Chloraka phone: +357 9906 8737 nic-hdl: AA44255-RIPE mnt-by: lir-cy-netaxis-1-MNT created: 2024-12-09T08:40:26Z last-modified: 2024-12-09T08:40:26Z source: RIPE # Filtered route: 103.110.65.0/24 origin: AS26383 mnt-by: interlir-mnt created: 2025-01-30T09:57:24Z last-modified: 2025-01-30T09:57:24Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 11 months ago · Last seen 4 months ago
Appeared in 12 threat reports