IOC Radar
IPMediumSignal 100/100

176.193.204.236

Location
Russian FederationRussian Federation
Zheleznodorozhnyy, Moscow
ASN
AS12714
Net By Net Holding LLC
First Seen
Feb 17, 2024
Last Seen
Aug 9, 2025
Feb 17
First Seen
844d ago
Aug 9
Last Seen
304d ago
11
Reports
source reports
99%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryRURussian Federation
RegionZheleznodorozhnyy, Moscow
ASNAS12714
OrganizationNet By Net Holding LLC

Feed Intelligence Summary

11 reports99% confidence
11
Source reports
99%
Confidence score
Category tags
abuseapkaptarmasciibase64-loaderbotnetbotnetdomainbrute force attackcode injectioncommand and controlcredential accesscredential harvestingcredential stuffingdata exfiltrationdbatloaderddos attacksdistributed attacksdlldropped-by-privateloaderelfencodedexegafgytguloaderhajimeindicatorinfiniinternet of thingsiot botnetiot/ics attackliclummastealermalicious softwaremalwaremetasploitmipsmirai botnetmozinetsupportmodulesnetsupportratnetworkopendirpassword attacksphishing attackprocess injectionps1purelogstealerredlinestealerresearchedrussian federationsaint helena, ascension and tristan da cunhasnakekeyloggersocial engineeringstealct1003t1041t1053t1055t1059t1059.007t1071t1071.001t1078t1105t1110.001t1110.002t1110.003t1110.004t1189t1190t1204t1204.001t1486t1496t1499.002t1499.003t1547t1565t1566t1566.001t1566.002t1566.003t1573t1588t1608web exploitationzip

Activity Timeline

1 total obs
Aug 9Aug 9

Threat Activity Heatmap

· Peak: 2025-08-09
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
11
Reports
First seenFeb 17, 2024
Last seenAug 9, 2025
GeolocationRU
CountryRussian Federation
LocationZheleznodorozhnyy, Moscow
ASNAS12714
OrgNet By Net Holding LLC
Coords55.7726, 37.6027

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 10 months ago
Appeared in 11 threat reports