IOC Radar
IPMediumSignal 43/100

105.158.156.132

Location
MoroccoMorocco
Kasba Tadla, Béni Mellal-Khénifra
ASN
AS36903
ADSL Maroc telecom
First Seen
Oct 13, 2024
Last Seen
Apr 10, 2026
Oct 13
First Seen
611d ago
Apr 10
Last Seen
67d ago
12
Reports
source reports
43%
Confidence
medium
1/91
VirusTotal
detections
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
43%
Signal Score
43 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryMAMorocco
RegionKasba Tadla, Béni Mellal-Khénifra
ASNAS36903
OrganizationADSL Maroc telecom

Feed Intelligence Summary

12 reports43% confidence
12
Source reports
43%
Confidence score
Category tags
abuseactive scanactive scanningafricaattackbad reputationbrute forcebrute force attackcredential accesscredential stuffingexploitation activityidentity & access exploitationimapimap attackindicatormalicious activitymalwaremorocconetworkpassword attacksreconnaissanceresearchedscannersmtpsmtp attackerssh attackt1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003threat actortor node

Activity Timeline

1 total obs
Apr 10Apr 10

Threat Activity Heatmap

· Peak: 2026-04-10
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
43
SIGNAL
Signal Score
43%
Confidence
12
Reports
First seenOct 13, 2024
Last seenApr 10, 2026
GeolocationMA
CountryMorocco
LocationKasba Tadla, Béni Mellal-Khénifra
ASNAS36903
OrgADSL Maroc telecom
Coords32.2973, -6.7030

VirusTotal

1/ 91vendors flagged
1% detection rateJun 5, 2026

WHOIS

raw
inetnum: 105.158.0.0 - 105.158.255.255 netname: ADSL_Maroc_telecom descr: ADSL_Maroc_telecom country: MA admin-c: DMT1-AFRINIC tech-c: SMT1-AFRINIC status: ASSIGNED PA mnt-by: ONPT-MNT source: AFRINIC # Filtered parent: 105.128.0.0 - 105.159.255.255 person: DEMPFS Maroc Telecom nic-hdl: DMT1-AFRINIC address: Si�ge de Maroc telecom Avenue Annakhil Hay Riad Rabat address: Rabat 10100 address: Morocco phone: tel:+212-37284319 phone: tel:+212-37284312 mnt-by: GENERATED-59UQAQ1UAZKQWKK5GWNQRJ9VGMHDFDGD-MNT source: AFRINIC # Filtered person: SEPFS Maroc Telecom nic-hdl: SMT1-AFRINIC address: Service Exploitation des PFS address: MAROC TELECOM address: Avenue Hay Annakhil Riad address: rabat address: Morocco phone: tel:+212-37284319 phone: tel:+212-37284314 mnt-by: GENERATED-QKJHRQGRJU8KJEZGF62S2JCUXLD0D81A-MNT source: AFRINIC # Filtered route: 105.128.0.0/11 descr: route object origin: AS36903 mnt-by: ONPT-MNT source: AFRINIC # Filtered route: 105.128.0.0/11 descr: route object origin: AS6713 mnt-by: ONPT-MNT source: AFRINIC # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 12 threat reports