IOC Radar
IPMediumSignal 79/100

149.102.140.108

Location
GermanyGermany
Lauterbourg, North Rhine-Westphalia
ASN
AS51167
Contabo GmbH
First Seen
Apr 11, 2026
Last Seen
Apr 24, 2026
Apr 11
First Seen
63d ago
Apr 24
Last Seen
51d ago
10
Reports
source reports
79%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
79%
Signal Score
79 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryDEGermany
RegionLauterbourg, North Rhine-Westphalia
ASNAS51167
OrganizationContabo GmbH

Feed Intelligence Summary

10 reports79% confidence
10
Source reports
79%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbrute forcebrute force attackerbrute-forcebruteforceeuropefrancegermanyindicatornetworkreconnaissanceresearchedscannersipt1595.001t1595.002t1595.003vultr

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
79
SIGNAL
Signal Score
79%
Confidence
10
Reports
First seenApr 11, 2026
Last seenApr 24, 2026
GeolocationDE
CountryGermany
LocationLauterbourg, North Rhine-Westphalia
ASNAS51167
OrgContabo GmbH
Coords51.2230, 6.7824

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected attempting to brute force SIP on Vultr Melbourne (Australia) honeypot
raw
NetRange: 149.102.0.0 - 149.102.255.255 CIDR: 149.102.0.0/16 NetName: COGENT-149-102-16 NetHandle: NET-149-102-0-0-1 Parent: NET149 (NET-149-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Cogent Communications, LLC (COGC) RegDate: 1992-01-28 Updated: 2025-09-23 Ref: https://rdap.arin.net/registry/ip/149.102.0.0 OrgName: Cogent Communications, LLC OrgId: COGC Address: 2450 N Street NW City: Washington StateProv: DC PostalCode: 20037 Country: US RegDate: 2000-05-30 Updated: 2025-09-23 Comment: Geofeed https://geofeed.cogentco.com/geofeed.csv Ref: https://rdap.arin.net/registry/entity/COGC ReferralServer: rwhois://rwhois.cogentco.com:4321 OrgTechHandle: IPALL-ARIN OrgTechName: IP Allocation OrgTechPhone: +1-877-875-4311 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN OrgAbuseHandle: COGEN-ARIN OrgAbuseName: Cogent Abuse OrgAbusePhone: +1-877-875-4311 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN OrgNOCHandle: ZC108-ARIN OrgNOCName: Cogent Communications OrgNOCPhone: +1-877-875-4311 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 10 threat reports