IOC Radar
IPMediumSignal 97/100

168.232.12.96

Location
BrazilBrazil
Baturité, CE
ASN
AS264932
STAYNET SERVIÇOS DE INTERNET LTDA
First Seen
Oct 7, 2023
Last Seen
Mar 3, 2026
Oct 7
First Seen
981d ago
Mar 3
Last Seen
103d ago
13
Reports
source reports
97%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
97%
Signal Score
97 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

36 techniques

Network Information

CountryBRBrazil
RegionBaturité, CE
ASNAS264932
OrganizationSTAYNET SERVIÇOS DE INTERNET LTDA

IP Category

Proxy
Proxy server

Feed Intelligence Summary

13 reports97% confidence
13
Source reports
97%
Confidence score
Category tags
access controlactive scanningauto-generated securityblacklist candidateblacklist ipbotnetbotnet activitybrbrazilbrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingdata exfiltrationddos attacksdecoy systemdistributed attackshttp scannerindicatorinfrastructure acquisitionreconnaissanceinitial accessinternet of thingsintrusion detectioniot botnetiot/ics attackmalicious scanmalicious softwaremalwaremalware propagationmanualmirai botnetnetworknetwork attacksnetwork reconnaissancenetwork scanningnetwork securitynorth americapassword attacksphishing attackprocess injectionprotocol exploitationproxyproxy protocolreconnaissancereconnaissance activityremote accessresearchedscanscannerscanning activityscript kiddiessecurity policyservice probingsocial engineeringsouth americat1016t1018t1021t1021.004t1040t1046t1055t1059t1071t1071.001t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1589t1590.001t1592t1595t1595.001t1595.002t1595.003tcp protocoltcp/23tcp/80telecommunicationstelnet threatthreat intelligencethreat preventionunited statesweb traffic

Activity Timeline

1 total obs
Mar 3Mar 3

Threat Activity Heatmap

· Peak: 2026-03-03
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
97
SIGNAL
Signal Score
97%
Confidence
13
Reports
First seenOct 7, 2023
Last seenMar 3, 2026
GeolocationBR
CountryBrazil
LocationBaturité, CE
ASNAS264932
OrgSTAYNET SERVIÇOS DE INTERNET LTDA
Coords-3.7170, -38.5287
Proxy

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 8080 HTTP and PROXY. Same IP should not appear more than once in 96 hours in our lists S3#.
raw
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 3 months ago
Appeared in 13 threat reports