IPMediumSignal 78/100
158.94.208.104
Location
GermanyFrankfurt am Main, Hessen
ASN
AS202412
Omegatech LTD
First Seen
Oct 21, 2025
Last Seen
Jun 19, 2026
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryGermany
GermanyRegionFrankfurt am Main, Hessen
ASNAS202412
OrganizationOmegatech LTD
Feed Intelligence Summary
12 reports78% confidence
12
Source reports
78%
Confidence score
Category tags
abusech-threatfox-c2cabusech-urlhaus-c2cacrstealeractive scanactive scanningamadeyamosanti-debugaptarmasciibad reputationbad web botbotnetbotnet activitybotnetdomainbphbrute forcebrute force attackbrute-forcec2censyscommand & controlcredential accesscredential harvestingcredential stuffingcryptocurrencycryptostealerdedomaindonutloaderdropped-by-amadeydropperelfencryptioneritreaeuropeevasionexeexecutable fileexploitation activityexploited hostgafgytgermanyhackinghtaidentity & access exploitationiexindicatorinfostealerinjectoriot securityiot targetedmacosmalwaremassloggermipsmiraimozimultiple infectionsnetworkobfuscatoropendirp2ppassword attackspayloadphantomstealerphishingphishing attackpluginpowershellps1purelogssteapurelogsstealerrailnetransomwareratreconnaissanceremcosratremusstealerresearchedrev-base64-loaderscams & fraudscannershsiriusratsocial engineeringstealcstealert1001t1012t1027t1027.001t1036t1046t1055t1055.001t1055.013t1059t1059.001t1059.005t1059.007t1071t1073t1082t1102t1104t1105t1106t1110.001t1110.002t1110.003t1110.004t1140t1185t1189t1195t1203t1204t1218t1218.004t1218.011t1480t1485t1497t1497.001t1531t1539t1553t1553.002t1555t1555.003t1564t1564.003t1566t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003t1608t1608.002threat actorthreatfox iocstor nodetr.rozena.genua-wgetunited kingdomuser-agent checkvidarvulnerability scanweb app attackwraithxml
Activity Timeline
Jun 19Jun 19
Threat Activity Heatmap
· Peak: 2026-06-19LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
12
Reports
First seenOct 21, 2025
Last seenJun 19, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hessen
ASNAS202412
OrgOmegatech LTD
Coords50.1109, 8.6820
VirusTotal
Not checked
WHOIS
- description
- CC=GB ASN=AS786 jisc services limited
- raw
- inetnum: 158.94.208.0 - 158.94.208.255 netname: OMEGATECH country: DE geofeed: https://omegatech.sc/geofeed.csv descr: OMEGATECH org: ORG-OL329-RIPE abuse-c: CA12141-RIPE admin-c: CA12141-RIPE tech-c: CA12141-RIPE mnt-domains: omegatechsc-mnt mnt-lower: omegatechsc-mnt mnt-routes: omegatechsc-mnt status: ASSIGNED PA mnt-by: lir-tr-mgn-1-MNT created: 2025-09-19T12:25:52Z last-modified: 2026-01-21T12:55:44Z source: RIPE organisation: ORG-OL329-RIPE org-name: Omegatech LTD org-type: OTHER address: HOUSE OF FRANCIS ROOM 303, ILE DU PORT, MAHE, SEYCHELLES country: SC abuse-c: CA12141-RIPE mnt-ref: omegatechsc-mnt mnt-ref: lir-tr-mgn-1-MNT created: 2026-01-05T00:10:50Z last-modified: 2026-01-21T12:55:02Z source: RIPE # Filtered mnt-by: omegatechsc-mnt role: Abuse Contact address: [email protected] nic-hdl: CA12141-RIPE abuse-mailbox: [email protected] mnt-by: omegatechsc-mnt created: 2026-01-05T00:09:14Z last-modified: 2026-01-21T12:42:42Z source: RIPE # Filtered route: 158.94.208.0/24 origin: AS202412 created: 2026-01-21T12:33:38Z last-modified: 2026-01-21T12:33:38Z source: RIPE mnt-by: lir-tr-mgn-1-MNT
- references
- SecureLeaf-ADV-2026-WP-001.pdf, https://secureleaf.dispensight.com/SecureLeaf-ADV-2026-WP-001.pdf
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 8 months ago · Last seen 4 days ago
Appeared in 12 threat reports