IOC Radar
IPMediumSignal 72/100

130.12.180.88

Location
United StatesUnited States
Amsterdam, Kentucky
ASN
AS202412
Virtualine Technologies
First Seen
Dec 22, 2025
Last Seen
Jun 3, 2026
Dec 22
First Seen
184d ago
Jun 3
Last Seen
20d ago
14
Reports
source reports
72%
Confidence
medium
Found in 14 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
72%
Signal Score
72 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Network Information

CountryUSUnited States
RegionAmsterdam, Kentucky
ASNAS202412
OrganizationVirtualine Technologies

Feed Intelligence Summary

14 reports72% confidence
14
Source reports
72%
Confidence score
Category tags
abuseaccess attemptsaccount compromiseactive scanactive scanningactor listasiaattackattacker-ipaustraliaauthentication attemptsautomated attackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute force attemptsbrute-forcebrute_forcec2 trafficcanadacloud infrastructurecloud infrastructure attackcloud infrastructure targetcloud servicescode-injectioncommand & controlcommand and controlcommand injectioncommunication protocolcowrie honeypotcredential accesscredential access attemptscredential attackcredential brute forcecredential compromisecredential stuffingcredential-attackcredential_accessdata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attackdedecoy systemdenial of servicedigital oceandigitalocean infrastructuredionaea honeypotdnsdns attackencryptionenumerationeuropeexploitexploit attemptexploitation activityexploited hostexternal attackexternal reconnaissanceexternal-threatfattfranceftpftp brute forcegermanyhackinghoneytrap honeypothttp botnethttp scannerhttpsidentity & access exploitationindicatorinitial accessinitial access attemptinitial access preparationinjection activityinjection attacksinternet facing assetinternet facing assetsinternet wide scaninternet-wide scanioc.ipipv4ipv4 indicatorsipv4 iocipv4-iocirc botnetjapanlateral movementlogin attacklondonmailoney honeypotmalicious activitymalicious ip addressesmalicious softwaremalicious-ipmalwaremalware behaviourmalware capturemalware distributionmisp threatnetherlandsnetworknetwork attacksnetwork discoverynetwork enumerationnetwork intrusion attemptsnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork scanning activitynetwork securitynetwork service scanningnetwork servicesnetwork traffic analysisnetwork-discoverynetwork-reconnaissancenetwork_reconnaissancenetworkscanningnlnorth americaoceaniaopen threatopportunistic attackerotx pulsenametip0fparispassword attacksphishingphishing attackphishing trapping of deathpinyinpla unitpotential vulnerability probingprocess injectionprotocol exploitationransomwarereconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanner ipscannersscanning activitysecurity eventsecurity operationssensor-taggedsentrypeer botnetservice enumerationservice scansmtpsql-injectionssh attackssh monitoringsynsyn scant1018t1021t1021.001t1021.002t1040t1046t1053t1055t1059t1059.003t1071t1071.001t1076t1077t1078t1087t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1565t1589t1590t1590.002t1590.003t1592t1595t1595.001t1595.002t1595.003tannertargeting databasetcp protocoltcp scantcp scanningtcp/iptelecommunicationstelnet threatthreat actorthreat actor: unknownthreat detectionthreat feedthreat intelligencethreat-feedti advisorytor nodetpottsocudp port scanudp scanunit coverunited kingdomunited statesunknown threat actorvoidtrapvoidtrap-intelligencevoipvoip attackvulnerability scanvultr-platformweb application attackweb exploitationweb trafficweb-application-attack

Activity Timeline

1 total obs
Jun 3Jun 3

Threat Activity Heatmap

· Peak: 2026-06-03
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
72
SIGNAL
Signal Score
72%
Confidence
14
Reports
First seenDec 22, 2025
Last seenJun 3, 2026
GeolocationUS
CountryUnited States
LocationAmsterdam, Kentucky
ASNAS202412
OrgVirtualine Technologies
Coords38.1466, -85.5881

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 6 months ago · Last seen 20 days ago
Appeared in 14 threat reports