IPMediumSignal 95/100

`147.45.178.85`

Location

Germany

Frankfurt am Main, Hesse

ASN

AS215540

Global Connectivity Solutions LLP

First Seen

Feb 27, 2025

Last Seen

Mar 3, 2026

Feb 27

First Seen

474d ago

Mar 3

Last Seen

105d ago

Reports

source reports

95%

Confidence

medium

Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

95%

Signal Score

95 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

45 techniques

Network Information

Country

Germany

RegionFrankfurt am Main, Hesse

ASNAS215540

OrganizationGlobal Connectivity Solutions LLP

Feed Intelligence Summary

11 reports95% confidence

Source reports

95%

Confidence score

Category tags

abuseaccount compromiseactive scanningamaranth-dragonauthenticationawsazurebackdoorbl networksbotnetbrute forcebrute force attackcgi globalclick-based attackcommand and controlcommunication protocolcompromised websitecredential accesscredential harvestingcredential stuffingcredential theftcybercxdata encryptiondata exfiltrationdenial of servicedistributed attacksenumerationeuropeeurope/asiaexfiltrationextortionfornex hostinggermanyheadless browserheadless browser automationimapimap attackindicatorinformation technologyinitial accessinjected linkinjected linksipv4it infrastructurejavascript injectionlimitedmalicious linksmalicious pluginmalicious pluginsmalicious softwaremalwaremalware injectionnetworknetwork attacksnetwork intrusionnetwork protocolnetwork scanningnotepad++password attackspassword crackingphishing attackprivilege escalationprocess injectionprospero oooproton66 ooopublicraasransomwarereconnaissancered bytesremote accessresearchedrussiascannersecurity operationssftp compromisesmartape ousmtpsmtp attackersocial engineeringsoftware developmentsolutions llpssh attacksupply chain attacksupply chain compromisesystem disruptionsystembct1003.001t1021t1027t1040t1055t1059t1059.001t1059.007t1068t1071.001t1078t1078.001t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1195t1195.001t1195.002t1199t1204.001t1204.002t1486t1490t1496t1499.002t1499.003t1505.003t1555t1565t1566t1566.001t1566.002t1566.003t1595t1595.001t1595.002t1595.003t1608.001tcp protocolthird-party riskthreat intelligenceuser executionwordpress phishing campaignwp engine

Activity Timeline

1 total obs

Mar 3Mar 3

Threat Activity Heatmap

· Peak: 2026-03-03

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Threat ScoreHigh Risk

SIGNAL

Signal Score

95%

Confidence

Reports

First seenFeb 27, 2025

Last seenMar 3, 2026

GeolocationDE

CountryGermany

LocationFrankfurt am Main, Hesse

ASNAS215540

OrgGlobal Connectivity Solutions LLP

Coords50.1169, 8.6837

VirusTotal

Not checked

WHOIS

description: CC=RU ASN=AS2895 ooo freenet group
raw: inetnum: 147.45.178.0 - 147.45.178.255 netname: GCS_SER-NET org: ORG-GCSL7-RIPE country: DE admin-c: EM14633-RIPE tech-c: EM14633-RIPE status: ASSIGNED PA mnt-by: FREENET-MNT created: 2024-04-08T17:31:00Z last-modified: 2024-04-08T17:31:00Z source: RIPE organisation: ORG-GCSL7-RIPE descr: Global Connectivity Solutions org-name: GLOBAL CONNECTIVITY SOLUTIONS LLP country: GB org-type: OTHER address: Suite 310, 21 Hill Street, Haverfordwest, Pembrokeshire, SA61 1QQ abuse-c: ACRO55365-RIPE remarks: -----CONTACT----- remarks: abuse: [email protected] remarks: support: [email protected] remarks: -------END------- mnt-ref: GIRnet-mnt remarks: -----CUSTOMERS----- mnt-ref: AM-VDS mnt-ref: INETTECH-MNT mnt-ref: ru-avm-1-mnt mnt-ref: ru-pev-1-mnt mnt-ref: PROEKT-MNT mnt-ref: proxy-six-mnt mnt-ref: IPSMAIN mnt-ref: IEAG mnt-ref: MNT-DGTL mnt-ref: MNT-INTERLAN mnt-ref: AZERONLINE-MNT mnt-ref: lir-ru-powernet-1-MNT mnt-ref: lir-ru-llclorien-1-MNT mnt-ref: ru-permtelecom-1-mnt mnt-ref: DATAMAX-M mnt-ref: IVC-MNT mnt-ref: FREENET-MNT mnt-ref: BG-MNT mnt-ref: ru-quasar-1-mnt mnt-ref: voldeta-mnt mnt-ref: interlir-mnt mnt-ref: mnt-ru-ipdenisova-1 mnt-ref: MNT-STRL mnt-ref: MNT-GCX mnt-ref: ROSNIIROS-MNT mnt-ref: IPMAGNAT-MNT mnt-ref: VPSVILLE-mnt mnt-ref: lir-ae-royal-1-MNT mnt-ref: MNT-NETERRA mnt-ref: SVT-RIPE-MNT mnt-ref: mnt-ru-am-1 mnt-ref: us-coreip-1-mnt mnt-ref: mnt-bg-eurocrypt-1 mnt-ref: lir-ae-technology-1-MNT remarks: --------END-------- mnt-by: GCS-MNT created: 2024-01-25T10:49:19Z last-modified: 2025-05-01T15:02:33Z source: RIPE # Filtered person: Global Connectivity Solutions address: Suite 310, 21 Hill Street, Haverfordwest, Pembrokeshire, SA61 1QQ remarks: -----CONTACT----- remarks: -------END------- phone: +44 117 409 0977 nic-hdl: EM14633-RIPE mnt-by: GCS-MNT created: 2024-01-25T10:42:56Z last-modified: 2024-10-26T14:02:57Z source: RIPE # Filtered route: 147.45.178.0/24 origin: AS215540 mnt-by: FREENET-MNT created: 2024-04-08T17:35:02Z last-modified: 2024-04-08T17:35:02Z source: RIPE
references: https://connect.cybercx.com.au/dark-engine, https://storage.pardot.com/1069042/1748905703CCn8f7sn/CyberCX___WP_Engine_Report.pdf

`147.45.178.85`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy