IOC Radar
IPMediumSignal 33/100

161.97.79.227

Location
GermanyGermany
Lauterbourg, Hesse
ASN
AS51167
Contabo GmbH
First Seen
Feb 9, 2025
Last Seen
Jun 4, 2026
Feb 9
First Seen
490d ago
Jun 4
Last Seen
9d ago
7
Reports
source reports
33%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

2 techniques

Network Information

CountryDEGermany
RegionLauterbourg, Hesse
ASNAS51167
OrganizationContabo GmbH

IP Category

Proxy
Proxy server

Feed Intelligence Summary

7 reports33% confidence
7
Source reports
33%
Confidence score
Category tags
bitcoinbrute forcebrute force attackercryptocurrencycryptocurrency threatscryptojackingeuropefinancefrancegermanyindicatornetworkproxyransomwareresearchedresource hijackingsocks proxyt1486t1496

Activity Timeline

1 total obs
Jun 4Jun 4

Threat Activity Heatmap

· Peak: 2026-06-04
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
7
Reports
First seenFeb 9, 2025
Last seenJun 4, 2026
GeolocationDE
CountryGermany
LocationLauterbourg, Hesse
ASNAS51167
OrgContabo GmbH
Coords50.1109, 8.6821
Proxy

VirusTotal

Not checked

WHOIS

description
proxy-proxy_socks5 search result.
raw
inetnum: 161.97.64.0 - 161.97.127.255 netname: CONTABO descr: Contabo GmbH org: ORG-GG22-RIPE country: DE admin-c: MH7476-RIPE tech-c: MH7476-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO created: 2020-05-08T06:40:27Z last-modified: 2020-05-08T06:48:03Z source: RIPE organisation: ORG-GG22-RIPE org-name: Contabo GmbH country: DE org-type: LIR remarks: * Please direct all complaints about Internet abuse like Spam, hacking or scans * remarks: * to [email protected] . This will guarantee fastest processing possible. * address: Welfenstra�e 22 address: 81541 address: M�nchen address: GERMANY phone: +498921268372 fax-no: +498921665862 abuse-c: MH12453-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MNT-CONTABO mnt-ref: MNT-OCIRIS mnt-by: RIPE-NCC-HM-MNT mnt-by: MNT-CONTABO created: 2009-12-09T13:41:08Z last-modified: 2025-12-05T10:47:37Z source: RIPE # Filtered person: Johannes Selg address: Contabo GmbH address: Welfenstr. 22 address: 81541 M�nchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO mnt-by: MNT-GIGA-HOSTING created: 2010-01-04T10:41:37Z last-modified: 2025-12-05T12:12:21Z source: RIPE route: 161.97.78.0/23 origin: AS51167 mnt-by: MNT-CONTABO created: 2020-05-08T07:05:54Z last-modified: 2020-05-08T07:05:54Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 9 days ago
Appeared in 7 threat reports