IPMediumSignal 33/100
169.255.120.218
Location
CongoBrazzaville, Brazzaville
ASN
AS37463
BZV Corporate
First Seen
Dec 3, 2023
Last Seen
May 8, 2026
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryCongo
CongoRegionBrazzaville, Brazzaville
ASNAS37463
OrganizationBZV Corporate
Feed Intelligence Summary
17 reports33% confidence
17
Source reports
33%
Confidence score
Category tags
abuseactive scanactive scanningatif feedattackbad reputationbanlist feedbinary defensebotnetbotnet activitybrute forcebrute force attackcgcommand and controlcommunication protocolcongocowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase securityddosdecoy systemdionaea honeypotdistributed attacksexploitation activityftp brute forcehackinghoneytrap honeypotidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityinjection attackslamplamp exploitation attemptsmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemanualnetworknetwork scanningnetwork securitynorth americapassword attacksphishingphishing attackphishing trappotential malware distributionprocess injectionprotocol exploitationreconnaissanceresearchedresource hijackingrtbhscannersentrypeer botnetsftp attacksip brute forcesip scanningsmtp brute forcesocial engineeringssh attackssh monitoringt1016t1018t1021t1040t1041t1046t1053t1055t1059t1059.003t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1583t1587.001t1588t1590.001t1595t1595.001t1595.002t1595.003telecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodeunited statesvoipvoip attack
Activity Timeline
May 8May 8
Threat Activity Heatmap
· Peak: 2026-05-08LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
17
Reports
First seenDec 3, 2023
Last seenMay 8, 2026
GeolocationCG
CountryCongo
LocationBrazzaville, Brazzaville
ASNAS37463
OrgBZV Corporate
Coords-1.0000, 15.0000
VirusTotal
Not checked
WHOIS
- description
- 2025-02-13T10:29:30.688Z Honeypot : Dionaea : Source: 169.255.120.218 : Port: 3306 Connection: {'transport': 'tcp', 'type': 'accept', 'protocol': 'mysqld'}
- raw
- inetnum: 169.255.120.0 - 169.255.120.255 netname: BZV_Corporate_Customers descr: This range will be used by our Corporates customer at Brazzaville side country: CG admin-c: JCM5-AFRINIC tech-c: LHS2-AFRINIC tech-c: RM41-AFRINIC status: ASSIGNED PA mnt-by: MTN-CONGO-MNT source: AFRINIC # Filtered parent: 169.255.120.0 - 169.255.123.255 person: Jean Claude MWENZE address: 1150 address: BRAZZAVILLE address: Congo phone: tel:+242-06-669-1557 nic-hdl: JCM5-AFRINIC mnt-by: GENERATED-QN79KCRBZT1LLMTXGL80YMW7E7VMZ07X-MNT source: AFRINIC # Filtered person: Landry Hermann SAMBA address: 1150 address: BRAZZAVILLE address: Congo phone: tel:+242-06-669-1557 nic-hdl: LHS2-AFRINIC mnt-by: GENERATED-DF4FDHIXCWCSGFGXATPP7FGF4ZIJFVTK-MNT source: AFRINIC # Filtered person: ROMARIC Mahoua address: MTN Congo Brazzaville phone: tel:+242-06-669-1353 nic-hdl: RM41-AFRINIC mnt-by: GENERATED-KVSSABQTTWSB5PWWSUPHOQ9WIPCAE0WH-MNT source: AFRINIC # Filtered
- references
- https://list.rtbh.com.tr/output.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 1 month ago
Appeared in 17 threat reports