IPHighVerifiedSignal 49/100
147.78.149.201
Location
CroatiaZagreb, City of Zagreb
ASN
AS208057
Filip
First Seen
Oct 24, 2023
Last Seen
Apr 30, 2026
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
49%
Signal Score
49 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryCroatia
CroatiaRegionZagreb, City of Zagreb
ASNAS208057
OrganizationFilip
Feed Intelligence Summary
6 reports49% confidence
6
Source reports
49%
Confidence score
Category tags
ascii textazaz09botnetcalls processcertcheckincommand and controlconnection3acredential harvestingcrlf linedata exfiltrationdefense evasiondistributed attacksdrops peet malwareexploitation activityformbook cnchipshomenethrindicatorinfrastructure acquisitionreconnaissancemajormalicious softwaremalwaremanualmoderatenetworknextpe filephishing attackprocess injectionresearchedsocial engineeringspawnst1014t1016t1018t1027t1036t1047t1049t1055t1056t1057t1059t1071t1071.001t1082t1083t1112t1129t1486t1496t1497t1499.002t1499.003t1518t1547t1562t1565t1566.001t1566.002t1566.003t1587.001t1590.001turkeywindows sandboxyara
Activity Timeline
Apr 30Apr 30
Threat Activity Heatmap
· Peak: 2026-04-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
49
SIGNAL
Signal Score
49%
Confidence
6
Reports
First seenOct 24, 2023
Last seenApr 30, 2026
Verified IOC
GeolocationHR
CountryCroatia
LocationZagreb, City of Zagreb
ASNAS208057
OrgFilip
Coords45.8150, 15.9819
VirusTotal
Not checked
WHOIS
- description
- CC=HR ASN=AS208057 filip informatika d.o.o.
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 2 years ago · Last seen 1 month ago
Appeared in 6 threat reports