IOC Radar
IPMediumSignal 85/100

130.0.45.163

Location
UkraineUkraine
Odesa, Odesa
ASN
AS6876
TeNeT Telecommunication Company
First Seen
Apr 17, 2026
Last Seen
May 12, 2026
Apr 17
First Seen
55d ago
May 12
Last Seen
29d ago
9
Reports
source reports
85%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
85%
Signal Score
85 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUAUkraine
RegionOdesa, Odesa
ASNAS6876
OrganizationTeNeT Telecommunication Company

Feed Intelligence Summary

9 reports85% confidence
9
Source reports
85%
Confidence score
Category tags
abuseabusech-urlhaus-c2cactive scanarcarmasciibad reputationbase64-loaderbotnet activitybrute forcebrute-forcebruteforcec2command & controldropped-by-amadeydropped-by-gcleanerelfencodedeuropeexeexecutable fileexploitation activitygafgytguloaderhackinghajimehtaindicatorinfostealeriot securityiot targetedisolodaratluamalwaremipsmiraimozimsinetworkopendirphantomgatephantomstealerphishingpowershellps1pureratransomwareratremcosratresearchedrev-base64-loaderrmmrustystealersaint helena, ascension and tristan da cunhasantastealerscams & fraudscannersmartloadersparcsshstealersuperhtelnetua-mshtaua-wgetukrainevidarvipkeyloggervultrweb app attackx86x86-64xwormzigclipper

Activity Timeline

1 total obs
May 12May 12

Threat Activity Heatmap

· Peak: 2026-05-12
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
85
SIGNAL
Signal Score
85%
Confidence
9
Reports
First seenApr 17, 2026
Last seenMay 12, 2026
GeolocationUA
CountryUkraine
LocationOdesa, Odesa
ASNAS6876
OrgTeNeT Telecommunication Company
Coords46.4857, 30.7438

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected attempting to brute force TELNET on Vultr Tokyo (Japan) honeypot
raw
inetnum: 130.0.41.0 - 130.0.47.255 netname: TENET descr: TeNeT Networking Centre descr: Odessa Ukraine country: UA admin-c: TNT-UA tech-c: TNT-UA status: ASSIGNED PA mnt-by: AS6876-MNT mnt-lower: AS6876-MNT remarks: INFRA-AW created: 2011-11-22T12:13:04Z last-modified: 2011-11-22T12:13:04Z source: RIPE role: TENET Crew address: TENET Scientific Production Enterprise LLC address: 106 Bazarna str address: Odesa 65020, Ukraine admin-c: OE5-RIPE tech-c: ET8-RIPE tech-c: AVB497-RIPE nic-hdl: TNT-UA abuse-mailbox: [email protected] mnt-by: AS6876-MNT created: 2010-09-27T12:59:20Z last-modified: 2025-10-08T11:09:09Z source: RIPE # Filtered route: 130.0.32.0/19 descr: TeNeT Networking Centre descr: Odessa Ukraine origin: AS6876 mnt-by: AS6876-MNT mnt-lower: AS6876-MNT created: 2011-10-13T15:38:08Z last-modified: 2011-10-13T15:38:08Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 29 days ago
Appeared in 9 threat reports