IOC Radar
IPMediumSignal 77/100

164.92.211.176

Location
NetherlandsNetherlands
Amsterdam, Noord-Holland
ASN
AS14061
DigitalOcean, LLC
First Seen
Jan 9, 2022
Last Seen
Apr 7, 2026
Jan 9
First Seen
1624d ago
Apr 7
Last Seen
75d ago
17
Reports
source reports
77%
Confidence
medium
6/91
VirusTotal
detections
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
77%
Signal Score
77 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, Noord-Holland
ASNAS14061
OrganizationDigitalOcean, LLC

Feed Intelligence Summary

17 reports77% confidence
17
Source reports
77%
Confidence score
Category tags
abuseactive scanactive scanningattackbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosdecoy systemdenial of servicedistributed attackseuropeexploitation activityexploited hostexternal network scanexternal reconnaissancehackingidentity & access exploitationindicatorinformation gatheringinjection activitymalicious activitymalicious softwaremalwarenetherlandsnetworknetwork attacksnetwork discoverynetwork probingnetwork reconnaissancenetwork scanningnlnorth americapassword attacksphishingphishing attackpotential vulnerability scanpotential vulnerability scanningprocess injectionreconnaissanceresearchedscannerservice discoverysocial engineeringssh attackt1016t1018t1040t1046t1055t1071.001t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1589t1595t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencetor nodetsecunited statesunknown portvulnerability scanweb application attackweb exploitation

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
77
SIGNAL
Signal Score
77%
Confidence
17
Reports
First seenJan 9, 2022
Last seenApr 7, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, Noord-Holland
ASNAS14061
OrgDigitalOcean, LLC
Coords37.7510, -97.8220

VirusTotal

6/ 91vendors flagged
7% detection rateJun 8, 2026

WHOIS

description
Host scanning unknown application ports (Web, SMB, SSH, TELNET, ... are in other pulses). Details in pulse
raw
inetnum: 164.82.0.0 - 164.93.127.255 netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK descr: IPv4 address block not managed by the RIPE NCC remarks: ------------------------------------------------------ remarks: remarks: For registration information, remarks: you can consult the following sources: remarks: remarks: IANA remarks: http://www.iana.org/assignments/ipv4-address-space remarks: http://www.iana.org/assignments/iana-ipv4-special-registry remarks: http://www.iana.org/assignments/ipv4-recovered-address-space remarks: remarks: AFRINIC (Africa) remarks: http://www.afrinic.net/ whois.afrinic.net remarks: remarks: APNIC (Asia Pacific) remarks: http://www.apnic.net/ whois.apnic.net remarks: remarks: ARIN (Northern America) remarks: http://www.arin.net/ whois.arin.net remarks: remarks: LACNIC (Latin America and the Carribean) remarks: http://www.lacnic.net/ whois.lacnic.net remarks: remarks: ------------------------------------------------------ country: EU # Country is really world wide admin-c: IANA1-RIPE tech-c: IANA1-RIPE status: ALLOCATED UNSPECIFIED mnt-by: RIPE-NCC-HM-MNT created: 2019-01-07T10:49:17Z last-modified: 2019-01-07T10:49:17Z source: RIPE role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-RIPE tech-c: IANA1-RIPE nic-hdl: IANA1-RIPE remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: RIPE-NCC-MNT created: 1970-01-01T00:00:00Z last-modified: 2001-09-22T09:31:27Z source: RIPE # Filtered
references
https://threatfox.abuse.ch/export/csv/recent/, reports_2022-01-10.csv

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 2 months ago
Appeared in 17 threat reports