IOC Radar
IPMediumSignal 67/100

164.68.124.190

Location
GermanyGermany
Lauterbourg, Bavaria
ASN
AS51167
Contabo GmbH
First Seen
Feb 2, 2025
Last Seen
May 31, 2026
Feb 2
First Seen
494d ago
May 31
Last Seen
12d ago
16
Reports
source reports
67%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
67%
Signal Score
67 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Network Information

CountryDEGermany
RegionLauterbourg, Bavaria
ASNAS51167
OrganizationContabo GmbH

IP Category

Proxy
Proxy server

Feed Intelligence Summary

16 reports67% confidence
16
Source reports
67%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapacheapache attackerattackbad reputationbad web botblog spambotnet activitybrute forcebrute force attackbrute force attackerbrute-forcecredential accesscredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdedenial of serviceeuropeexploitation activityexploited hostfrfrancegermanyhackingidentity & access exploitationindicatorinjection activityinjection attacksmalicious activitymalwarenetworknlopen proxypassword attacksproxyreconnaissanceresearchedscannersecurity policyspamsql injectionssh attackt1059.003t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1499.001t1499.002t1595.001t1595.002t1595.003targeting databasethreat actorthreat preventiontor nodewebweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 31May 31

Threat Activity Heatmap

· Peak: 2026-05-31
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
67
SIGNAL
Signal Score
67%
Confidence
16
Reports
First seenFeb 2, 2025
Last seenMay 31, 2026
GeolocationDE
CountryGermany
LocationLauterbourg, Bavaria
ASNAS51167
OrgContabo GmbH
Coords48.1046, 11.6002
Proxy

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected performing web attacks against Cloudflare honeypot edge
raw
inetnum: 164.68.112.0 - 164.68.127.255 netname: CONTABO descr: Contabo GmbH country: DE org: ORG-GG22-RIPE admin-c: MH7476-RIPE tech-c: MH7476-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO created: 2019-06-17T15:25:21Z last-modified: 2019-06-17T15:25:21Z source: RIPE organisation: ORG-GG22-RIPE org-name: Contabo GmbH country: DE org-type: LIR remarks: * Please direct all complaints about Internet abuse like Spam, hacking or scans * remarks: * to [email protected] . This will guarantee fastest processing possible. * address: Welfenstra�e 22 address: 81541 address: M�nchen address: GERMANY phone: +498921268372 fax-no: +498921665862 abuse-c: MH12453-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MNT-CONTABO mnt-ref: MNT-OCIRIS mnt-by: RIPE-NCC-HM-MNT mnt-by: MNT-CONTABO created: 2009-12-09T13:41:08Z last-modified: 2025-12-05T10:47:37Z source: RIPE # Filtered person: Johannes Selg address: Contabo GmbH address: Welfenstr. 22 address: 81541 M�nchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO mnt-by: MNT-GIGA-HOSTING created: 2010-01-04T10:41:37Z last-modified: 2025-12-05T12:12:21Z source: RIPE route: 164.68.124.0/23 descr: CONTABO origin: AS51167 mnt-by: MNT-CONTABO created: 2019-06-17T15:00:46Z last-modified: 2019-06-17T15:00:46Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 12 days ago
Appeared in 16 threat reports