IOC Radar
IPMediumSignal 58/100

131.222.250.131

Location
TurkeyTurkey
Antakya, Istanbul
ASN
AS216472
Highspeed ISP
First Seen
Apr 10, 2026
Last Seen
Apr 23, 2026
Apr 10
First Seen
65d ago
Apr 23
Last Seen
52d ago
8
Reports
source reports
58%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
58%
Signal Score
58 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryTRTurkey
RegionAntakya, Istanbul
ASNAS216472
OrganizationHighspeed ISP

Feed Intelligence Summary

8 reports58% confidence
8
Source reports
58%
Confidence score
Category tags
active scanactive scanningaptbrute forcebrute force attackcredential accesscredential stuffingeurope/asiaexploitation activityidentity & access exploitationimapimap attacknetworkpassword attacksproxyreconnaissanceresearchedscannersmtpsmtp attackert1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003threat actortor nodeturkey

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
58
SIGNAL
Signal Score
58%
Confidence
8
Reports
First seenApr 10, 2026
Last seenApr 23, 2026
GeolocationTR
CountryTurkey
LocationAntakya, Istanbul
ASNAS216472
OrgHighspeed ISP
Coords40.9438, 29.1145

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 131.222.250.0 - 131.222.250.255 netname: TR-HSPEED-20250608 descr: Highspeed ISP descr: Istanbul, Turkey country: TR admin-c: IC5111-RIPE tech-c: IC5111-RIPE status: LEGACY mnt-by: ipv4center-mnt created: 2026-04-02T12:46:48Z last-modified: 2026-04-02T12:46:48Z source: RIPE org: ORG-HI109-RIPE geoloc: 41.0291 28.9766 language: TR geofeed: https://api.ipv4center.com/geofeeds/clients/15 remarks: Geofeed https://api.ipv4center.com/geofeeds/clients/15 organisation: ORG-HI109-RIPE org-name: Highspeed ISP org-type: OTHER address: --- country: TR abuse-c: ACRO49621-RIPE mnt-ref: ipv4center-mnt created: 2025-08-06T13:06:37Z last-modified: 2025-08-06T13:06:37Z source: RIPE # Filtered mnt-by: ipv4center-mnt person: IPv4 Center address: Yavuz sultan selim mahallesi ali y�cel sokak no 5 b phone: +90 850 308 3975 nic-hdl: IC5111-RIPE mnt-by: ipv4center-mnt created: 2022-08-27T12:14:16Z last-modified: 2022-08-27T12:14:16Z source: RIPE route: 131.222.250.0/24 descr: IPv4.Center Lease Route origin: AS202561 mnt-by: ipv4center-mnt created: 2026-04-02T12:46:48Z last-modified: 2026-04-02T12:46:48Z source: RIPE route: 131.222.250.0/24 descr: IPv4.Center Lease Route origin: AS216472 mnt-by: ipv4center-mnt created: 2026-04-02T12:46:49Z last-modified: 2026-04-02T12:46:49Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 8 threat reports