IOC Radar
IPMediumSignal 20/100

162.220.232.231

Location
United StatesUnited States
San Jose, California
ASN
AS400940
Railway
First Seen
May 26, 2026
Last Seen
May 26, 2026
May 26
First Seen
27d ago
May 26
Last Seen
27d ago
2
Reports
source reports
20%
Confidence
medium
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
20%
Signal Score
20 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionSan Jose, California
ASNAS400940
OrganizationRailway

IP Category

Proxy
Proxy server

Feed Intelligence Summary

2 reports20% confidence
2
Source reports
20%
Confidence score
Category tags
active scanexploitation activityhackingindicatornetworknorth americaopen proxyproxyresearchedscannersshunited statesusweb app attack

Activity Timeline

1 total obs
May 26May 26

Threat Activity Heatmap

· Peak: 2026-05-26
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
20
SIGNAL
Signal Score
20%
Confidence
2
Reports
First seenMay 26, 2026
Last seenMay 26, 2026
GeolocationUS
CountryUnited States
LocationSan Jose, California
ASNAS400940
OrgRailway
Coords37.3546, -121.9190
Proxy

VirusTotal

Not checked

WHOIS

raw
NetRange: 162.220.232.0 - 162.220.235.255 CIDR: 162.220.232.0/22 NetName: RLWY-METALGEN1-01 NetHandle: NET-162-220-232-0-1 Parent: NET162 (NET-162-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Railway (RC-1550) RegDate: 2024-03-20 Updated: 2025-04-06 Comment: Geofeed https://geofeed.railway.com Ref: https://rdap.arin.net/registry/ip/162.220.232.0 OrgName: Railway OrgId: RC-1550 Address: 548 Market St Address: PMB 68956 City: San Francisco StateProv: CA PostalCode: 94104 Country: US RegDate: 2023-10-18 Updated: 2024-11-04 Comment: https://railway.com Ref: https://rdap.arin.net/registry/entity/RC-1550 OrgDNSHandle: RAILW-ARIN OrgDNSName: Railway-Team OrgDNSPhone: +1-415-707-7675 OrgDNSEmail: [email protected] OrgDNSRef: https://rdap.arin.net/registry/entity/RAILW-ARIN OrgRoutingHandle: RAILW-ARIN OrgRoutingName: Railway-Team OrgRoutingPhone: +1-415-707-7675 OrgRoutingEmail: [email protected] OrgRoutingRef: https://rdap.arin.net/registry/entity/RAILW-ARIN OrgTechHandle: RAILW-ARIN OrgTechName: Railway-Team OrgTechPhone: +1-415-707-7675 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/RAILW-ARIN OrgNOCHandle: RAILW-ARIN OrgNOCName: Railway-Team OrgNOCPhone: +1-415-707-7675 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/RAILW-ARIN OrgAbuseHandle: ABUSE8954-ARIN OrgAbuseName: Abuse-Role OrgAbusePhone: +1-415-707-7675 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE8954-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 27 days ago · Last seen 27 days ago
Appeared in 2 threat reports