IPMediumSignal 47/100
165.22.122.166
Location
United KingdomSlough, England
ASN
AS14061
DigitalOcean, LLC
First Seen
Apr 18, 2025
Last Seen
Apr 5, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
47%
Signal Score
47 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited Kingdom
United KingdomRegionSlough, England
ASNAS14061
OrganizationDigitalOcean, LLC
Feed Intelligence Summary
10 reports47% confidence
10
Source reports
47%
Confidence score
Category tags
abuseactive scanactive scanningantispamattackauthentication attemptsbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolcowrie activitycowrie honeypotcowrie ssh attackscredential accesscredential stuffingdata exfiltrationdata store exposureddosdecoy systemdenial of servicedionaea activitydionaea honeypotdionaea malware collectiondistributed attackseuropeexploitation activityhackingidentity & access exploitationinjection activitylog4jmalicious activitymalicious sip activitymalicious softwaremalicious trafficmalwaremalware behaviourmalware capturenetworknetwork probingnetwork scanningnetwork securitypassword attacksprocess injectionproxyreconnaissanceresearchedresource hijackingscannersentrypeer botnetsftp access attemptssftp attacksip brute forcesip scanningspamssh attackssh monitoringt1021t1040t1041t1055t1059t1059.004t1071.001t1078t1078.001t1078.002t1078.003t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat intelligencetor nodeunited kingdomvoipvoip attackweb application attackweb exploitation
Activity Timeline
Apr 5Apr 5
Threat Activity Heatmap
· Peak: 2026-04-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
47
SIGNAL
Signal Score
47%
Confidence
10
Reports
First seenApr 18, 2025
Last seenApr 5, 2026
GeolocationGB
CountryUnited Kingdom
LocationSlough, England
ASNAS14061
OrgDigitalOcean, LLC
Coords51.5085, -0.1257
VirusTotal
Not checked
WHOIS
- description
- Unknown source type: h0neytr4p
- raw
- inetnum: 165.18.0.0 - 165.64.255.255 netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK descr: IPv4 address block not managed by the RIPE NCC remarks: ------------------------------------------------------ remarks: remarks: For registration information, remarks: you can consult the following sources: remarks: remarks: IANA remarks: http://www.iana.org/assignments/ipv4-address-space remarks: http://www.iana.org/assignments/iana-ipv4-special-registry remarks: http://www.iana.org/assignments/ipv4-recovered-address-space remarks: remarks: AFRINIC (Africa) remarks: http://www.afrinic.net/ whois.afrinic.net remarks: remarks: APNIC (Asia Pacific) remarks: http://www.apnic.net/ whois.apnic.net remarks: remarks: ARIN (Northern America) remarks: http://www.arin.net/ whois.arin.net remarks: remarks: LACNIC (Latin America and the Carribean) remarks: http://www.lacnic.net/ whois.lacnic.net remarks: remarks: ------------------------------------------------------ country: EU # Country is really world wide admin-c: IANA1-RIPE tech-c: IANA1-RIPE status: ALLOCATED UNSPECIFIED mnt-by: RIPE-NCC-HM-MNT created: 2023-11-07T15:50:14Z last-modified: 2023-11-07T15:50:14Z source: RIPE role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-RIPE tech-c: IANA1-RIPE nic-hdl: IANA1-RIPE remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: RIPE-NCC-MNT created: 1970-01-01T00:00:00Z last-modified: 2001-09-22T09:31:27Z source: RIPE # Filtered
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 10 threat reports