IPMediumSignal 20/100
139.162.132.254
Location
GermanyFrankfurt am Main, Hessen
ASN
AS63949
Linode, LLC
First Seen
Jun 30, 2025
Last Seen
Apr 20, 2026
Found in 5 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
20%
Signal Score
20 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryGermany
GermanyRegionFrankfurt am Main, Hessen
ASNAS63949
OrganizationLinode, LLC
IP Category
⟲
Proxy
Proxy server
Feed Intelligence Summary
5 reports20% confidence
5
Source reports
20%
Confidence score
Category tags
access controlactive scanactive scanningbotnetbotnet activitybotnet activity detectedbrute forcebrute force attackbrute force attacksc2c2 communicationcommand & controlcommand and controlcompromised hostscredential accesscredential stuffingdata exfiltrationdata store exposureddosddos preparationdistributed attackseuropeexploit attemptsexploitation activityftp brute forcegermanyhttp scanninghttps scanningidentity & access exploitationindicatorinjection activitylateral movementmalicious softwaremalwaremalware distributionnetworknetwork enumerationnetwork intrusionnetwork scanningnetwork securitypassword attacksprocess injectionprotocol exploitationproxyproxy activityreconnaissanceresearchedsecurity policysmtp scanningssh attackt1003t1005t1016t1018t1021t1040t1043t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1083t1090t1090.001t1090.002t1090.003t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1497t1499.002t1499.003t1550t1552t1555t1556t1565t1573t1595.001t1595.002t1595.003telnet threatthreat prevention
Activity Timeline
Apr 20Apr 20
Threat Activity Heatmap
· Peak: 2026-04-20LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
20
SIGNAL
Signal Score
20%
Confidence
5
Reports
First seenJun 30, 2025
Last seenApr 20, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hessen
ASNAS63949
OrgLinode, LLC
Coords50.1109, 8.6821
Proxy
VirusTotal
Not checked
WHOIS
- raw
- Domain Name: cloudnet.cloud Registry Domain ID: DE4BC72B553204B0292690FBEB4CA3E4A-ARI Registrar WHOIS Server: whois.1api.net Registrar URL: www.1api.net Updated Date: 2020-09-08T13:47:54Z Creation Date: 2016-02-11T01:49:08Z Registry Expiry Date: 2027-02-11T01:49:08Z Registrar: 1API GmbH Registrar IANA ID: 1387 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +49.68949396850 Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Registry Registrant ID: REDACTED FOR PRIVACY Registrant Name: REDACTED FOR PRIVACY Registrant Organization: Designated Agent LTD Registrant Street: REDACTED FOR PRIVACY Registrant Street: REDACTED FOR PRIVACY Registrant Street: REDACTED FOR PRIVACY Registrant City: REDACTED FOR PRIVACY Registrant State/Province: SE Registrant Postal Code: REDACTED FOR PRIVACY Registrant Country: SE Registrant Phone: REDACTED FOR PRIVACY Registrant Phone Ext: REDACTED FOR PRIVACY Registrant Fax: REDACTED FOR PRIVACY Registrant Fax Ext: REDACTED FOR PRIVACY Registrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name. Registry Admin ID: REDACTED FOR PRIVACY Admin Name: REDACTED FOR PRIVACY Admin Organization: REDACTED FOR PRIVACY Admin Street: REDACTED FOR PRIVACY Admin Street: REDACTED FOR PRIVACY Admin Street: REDACTED FOR PRIVACY Admin City: REDACTED FOR PRIVACY Admin State/Province: REDACTED FOR PRIVACY Admin Postal Code: REDACTED FOR PRIVACY Admin Country: REDACTED FOR PRIVACY Admin Phone: REDACTED FOR PRIVACY Admin Phone Ext: REDACTED FOR PRIVACY Admin Fax: REDACTED FOR PRIVACY Admin Fax Ext: REDACTED FOR PRIVACY Admin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name. Registry Tech ID: REDACTED FOR PRIVACY Tech Name: REDACTED FOR PRIVACY Tech Organization: REDACTED FOR PRIVACY Tech Street: REDACTED FOR PRIVACY Tech Street: REDACTED FOR PRIVACY Tech Street: REDACTED FOR PRIVACY Tech City: REDACTED FOR PRIVACY Tech State/Province: REDACTED FOR PRIVACY Tech Postal Code: REDACTED FOR PRIVACY Tech Country: REDACTED FOR PRIVACY Tech Phone: REDACTED FOR PRIVACY Tech Phone Ext: REDACTED FOR PRIVACY Tech Fax: REDACTED FOR PRIVACY Tech Fax Ext: REDACTED FOR PRIVACY Tech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name. Name Server: ns-625.awsdns-14.net Name Server: ns-1764.awsdns-28.co.uk Name Server: ns-1477.awsdns-56.org Name Server: ns-249.awsdns-31.com DNSSEC: unsigned URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/ >>> Last update of WHOIS database: 2021-07-05T14:24:00Z <<< For more information on Whois status codes, please visit https://icann.org/epp The above WHOIS results have been redacted to remove potential personal data. The full WHOIS output may be available to individuals and organisations with a legitimate interest in accessing this data not outweighed by the fundamental privacy rights of the data subject. To find out more, or to make a request for access, please visit: RDDSrequest.nic.cloud. The Service is provided so that you may look up certain information in relation to domain names that we store in our database. Use of the Service is subject to our policies, in particular you should familiarise yourself with our Acceptable Use Policy and our Privacy Policy. The information provided by this Service is 'as is' and we make no guarantee of it its accuracy. You agree that by your use of the Service you will not use the information provided by us in a way which is: * inconsistent with any applicable laws, * inconsistent with any policy issued by us, * to generate, distribute, or facilitate unsolicited mass email, promotions, advertisings or other solicitations, or * to enable high volume, automated, electronic processes that apply to the Service. You acknowledge that: * a response from the Service that a domain name is 'available', does not guarantee that is able to be registered, * we may restrict, suspend or terminate your access to the Service at any time, and * the copying, compilation, repackaging, dissemination or other use of the information provided by the Service is not permitted, without our express written consent. This information has been prepared and published in order to represent administrative and technical management of the TLD. We may discontinue or amend any part or the whole of these Terms of Service from time to time at our absolute discretion. Domain Name: CLOUDNET.CLOUD Registry Domain ID: DE4BC72B553204B0292690FBEB4CA3E4A-ARI Registrar WHOIS Server: whois.1api.net Registrar URL: http://www.1api.net Updated Date: 2020-09-08T13:47:54Z Creation Date: 2016-02-11T01:49:08Z Registrar Registration Expiration Date: 2027-02-11T01:49:08Z Registrar: 1API GmbH Registrar IANA ID: 1387 Registrar Abuse Contact Email: [email protected] Registrar Abuse Contact Phone: +49.68949396x850 Reseller: AB NameISP http://www.nameisp.com Domain Status: clientTransferProhibited - http://www.icann.org/epp#clientTransferProhibited Registry Registrant ID: Registrant Name: REDACTED FOR PRIVACY Registrant Organization: REDACTED FOR PRIVACY Registrant Street: REDACTED FOR PRIVACY Registrant City: REDACTED FOR PRIVACY Registrant State/Province: SE Registrant Postal Code: REDACTED FOR PRIVACY Registrant Country: SE Registrant Phone: REDACTED FOR PRIVACY Registrant Phone Ext: Registrant Fax: Registrant Fax Ext: Registrant Email: contact via https://www.1api.net/send-message/cloudnet.cloud/registrant Registry Admin ID: Admin Name: REDACTED FOR PRIVACY Admin Organization: REDACTED FOR PRIVACY Admin Street: REDACTED FOR PRIVACY Admin City: REDACTED FOR PRIVACY Admin State/Province: REDACTED FOR PRIVACY Admin Postal Code: REDACTED FOR PRIVACY Admin Country: REDACTED FOR PRIVACY Admin Phone: REDACTED FOR PRIVACY Admin Phone Ext: Admin Fax: Admin Fax Ext: Admin Email: contact via https://www.1api.net/send-message/cloudnet.cloud/admin Registry Tech ID: Tech Name: REDACTED FOR PRIVACY Tech Organization: REDACTED FOR PRIVACY Tech Street: REDACTED FOR PRIVACY Tech City: REDACTED FOR PRIVACY Tech State/Province: REDACTED FOR PRIVACY Tech Postal Code: REDACTED FOR PRIVACY Tech Country: REDACTED FOR PRIVACY Tech Phone: REDACTED FOR PRIVACY Tech Phone Ext: Tech Fax: Tech Fax Ext: Tech Email: contact via https://www.1api.net/send-message/cloudnet.cloud/tech Name Server: ns-1764.awsdns-28.co.uk Name Server: ns-625.awsdns-14.net Name Server: ns-1477.awsdns-56.org Name Server: ns-249.awsdns-31.com DNSSEC: unsigned URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/ >>> Last update of WHOIS database: 2021-07-05T14:24:00Z <<< For more information on Whois status codes, please visit https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en. ; This data is provided for information purposes, and to assist persons ; obtaining information about or related to domain name registration ; records. We do not guarantee its accuracy. ; By submitting a WHOIS query, you agree that you will use this data ; only for lawful purposes and that, under no circumstances, you will ; use this data to ; 1) allow, enable, or otherwise support the transmission of mass ; unsolicited, commercial advertising or solicitations via E-mail ; (spam); or ; 2) enable high volume, automated, electronic processes that apply ; to this WHOIS server. ; These terms may be changed without prior notice. ; By submitting this query, you agree to abide by this policy. ; <a href="http://www.nameisp.com">www.NameISP.com</a> ; NameISP is ICANN Accredited Registrar ; Register all available domains via:
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 11 months ago · Last seen 1 month ago
Appeared in 5 threat reports