IOC Radar
IPMediumSignal 41/100

178.16.55.232

Location
GermanyGermany
New York, New York
ASN
AS202412
Omegatech LTD
First Seen
Aug 21, 2025
Last Seen
Nov 13, 2025
Aug 21
First Seen
307d ago
Nov 13
Last Seen
222d ago
7
Reports
source reports
41%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
41%
Signal Score
41 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

56 techniques

Network Information

CountryDEGermany
RegionNew York, New York
ASNAS202412
OrganizationOmegatech LTD

Feed Intelligence Summary

7 reports41% confidence
7
Source reports
41%
Confidence score
Category tags
active scanningadbhoney honeypotaptasyncratattackaustraliabotnetbrute forcebrute force attackc2c2 frameworkcisco devicecisco exploitation attemptscobaltstrikecommand and controlcommunication protocolcompromised hostcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdatabase securitydecoy systemdeimosdevice managementdionaea honeypotdistributed attacksenterprise networkingeuropeexploited hostfattftpftp brute forcegermanyhackinghak5_cloud_c2havochoneytrap honeypothookbothttp scannerindicatorinjection attackslamplateral movementmailoney activitymailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware c2 communicationmalware capturemalware downloadmythicnetsupportratnetworknetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork securityoceaniap0fpassword attackspegasusphishingphishing attackphishing trappossible malware propagationprocess injectionprotocol exploitationqakbotratreconnaissanceremcos trojanremote accessremote access trojanremote servicesresearchedresource hijackingreverse_sshscannerscripting attackssensor-taggedsentrypeer botnetsftp access attemptssftp attacksftp attemptsliversmtpsocial engineeringssh attackssh monitoringsupershellt1003t1003.001t1003.006t1005t1016t1016.001t1016.002t1018t1021t1021.001t1027t1027.002t1027.005t1027.006t1040t1041t1053t1053.005t1055t1057t1059t1059.001t1059.003t1059.007t1071t1071.001t1071.002t1071.004t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1547t1547.001t1547.004t1565t1566t1566.001t1566.002t1566.003t1566.004t1568t1595t1595.001t1595.002t1595.003tannertelnet threatthreat actorthreat detectionthreat intelligencetpotvoip attackweb attackweb exploitationweb shell uploadsweb traffic

Activity Timeline

1 total obs
Nov 13Nov 13

Threat Activity Heatmap

· Peak: 2025-11-13
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
41
SIGNAL
Signal Score
41%
Confidence
7
Reports
First seenAug 21, 2025
Last seenNov 13, 2025
GeolocationDE
CountryGermany
LocationNew York, New York
ASNAS202412
OrgOmegatech LTD
Coords51.2491, 6.7668

VirusTotal

Not checked

WHOIS

raw
inetnum: 178.16.55.0 - 178.16.55.255 netname: METASPINNERNET country: US geofeed: https://metaspinner.net/geofeed.csv descr: METASPINNERNET org: ORG-MNG8-RIPE abuse-c: MA28156-RIPE admin-c: MA28156-RIPE tech-c: MA28156-RIPE mnt-domains: metaspinner-mnt mnt-lower: metaspinner-mnt mnt-routes: metaspinner-mnt status: ASSIGNED PA mnt-by: lir-tr-mgn-1-MNT created: 2025-08-19T16:05:29Z last-modified: 2025-08-19T16:05:29Z source: RIPE organisation: ORG-MNG8-RIPE org-name: metaspinner net GmbH org-type: OTHER address: 22177 Hamburg, Seekamp 20 country: DE abuse-c: ACRO60080-RIPE mnt-ref: metaspinnernet-mnt mnt-ref: lir-tr-mgn-1-MNT mnt-by: metaspinnernet-mnt mnt-by: metaspinner-mnt created: 2025-04-18T13:47:46Z last-modified: 2025-04-19T13:23:08Z source: RIPE # Filtered role: metaspinnernet address: 22177 Hamburg, Seekamp 20 abuse-mailbox: [email protected] nic-hdl: MA28156-RIPE mnt-by: metaspinnernet-mnt created: 2025-04-18T13:44:21Z last-modified: 2025-08-19T15:49:10Z source: RIPE # Filtered route: 178.16.55.0/24 origin: AS209800 mnt-by: lir-tr-mgn-1-MNT created: 2025-08-15T14:50:31Z last-modified: 2025-08-15T14:50:31Z source: RIPE
references
https://x.com/drb_ra/status/1958348867361247380, https://x.com/drb_ra/status/1958420509672063048, https://x.com/drb_ra/status/1958420648541163809, https://x.com/drb_ra/status/1958420788022850005, https://x.com/drb_ra/status/1958420926460023281, https://x.com/drb_ra/status/1958421064586789120, https://x.com/drb_ra/status/1958421202415804694, https://x.com/drb_ra/status/1958421340152528906, https://x.com/drb_ra/status/1958421478849810694, https://x.com/drb_ra/status/1958421617446391812, https://x.com/drb_ra/status/1958421756210774325, https://x.com/drb_ra/status/1958421895063199755, https://x.com/drb_ra/status/1958422033630372060, https://x.com/drb_ra/status/1958422172487098396, https://x.com/drb_ra/status/1958422310089531499, https://x.com/drb_ra/status/1958422448568733972, https://x.com/drb_ra/status/1958423094986506740, https://x.com/drb_ra/status/1958423232949690770, https://x.com/drb_ra/status/1958423372750037436, https://x.com/drb_ra/status/1958423511787016573, https://x.com/drb_ra/status/1958423650626875641, https://x.com/drb_ra/status/1958423789299015899, https://x.com/drb_ra/status/1958423926926713010, https://x.com/drb_ra/status/1958424066815316475, https://x.com/drb_ra/status/1958424205026070642, https://x.com/drb_ra/status/1958424343081525436, https://x.com/drb_ra/status/1958424482173128971, https://x.com/drb_ra/status/1958424620761255977, https://x.com/drb_ra/status/1958424759924072675, https://x.com/drb_ra/status/1958424897899704703, https://x.com/drb_ra/status/1958425037050200186, https://x.com/drb_ra/status/1958425175646728698, https://x.com/drb_ra/status/1958425313484181647, https://x.com/drb_ra/status/1958439656149660069, https://x.com/drb_ra/status/1958439795295695043, https://x.com/drb_ra/status/1958486099023520024, https://x.com/drb_ra/status/1958486238890979555, https://x.com/drb_ra/status/1958486379031109740, https://x.com/drb_ra/status/1958601661620134003, https://x.com/drb_ra/status/1958601800283779282, https://x.com/drb_ra/status/1958601937948963295, https://x.com/drb_ra/status/1958602076042535214, https://x.com/drb_ra/status/1958602214898856217, https://x.com/drb_ra/status/1958602352492953880, https://x.com/drb_ra/status/1958602491849056303, https://x.com/drb_ra/status/1958602630877601994, https://x.com/drb_ra/status/1958602773152571560, https://x.com/drb_ra/status/1958602912499941712, https://x.com/drb_ra/status/1958603051247235441, https://x.com/drb_ra/status/1958603189542179325, https://x.com/drb_ra/status/1958603835645001936, https://x.com/drb_ra/status/1958603974052827413, https://x.com/drb_ra/status/1958604112129356240, https://x.com/drb_ra/status/1958604250944045304, https://x.com/drb_ra/status/1958604389192802797, https://x.com/drb_ra/status/1958604527684223458, https://x.com/drb_ra/status/1958604666792812921, https://x.com/drb_ra/status/1958604805339062589, https://x.com/drb_ra/status/1958604943893426664, https://x.com/drb_ra/status/1958605083060707422, https://x.com/drb_ra/status/1958605221354975399, https://x.com/drb_ra/status/1958605363324100990, https://x.com/drb_ra/status/1958605501903839439, https://x.com/drb_ra/status/1958605639770357911, https://x.com/drb_ra/status/1958605778920648784, https://x.com/drb_ra/status/1958605916699279493, https://x.com/drb_ra/status/1958606055375540508, https://x.com/drb_ra/status/1958606193192313246, https://x.com/drb_ra/status/1958606331327475979, https://x.com/drb_ra/status/1958606470662045801, https://x.com/drb_ra/status/1958606610445869534, https://x.com/drb_ra/status/1958606748576579726, https://x.com/drb_ra/status/1958606888020713741, https://x.com/drb_ra/status/1958619202362708387, https://x.com/drb_ra/status/1958619848990220388, https://x.com/drb_ra/status/1958619988350132357, https://x.com/drb_ra/status/1958620128456949992, https://x.com/drb_ra/status/1958636506459119650

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 10 months ago · Last seen 7 months ago
Appeared in 7 threat reports