IOC Radar
IPMediumSignal 26/100

178.20.231.247

Location
TurkeyTurkey
Bayraklı, Izmir
ASN
AS57844
SPDNET Telekomunikasyon A.S.
First Seen
Dec 7, 2024
Last Seen
Apr 1, 2026
Dec 7
First Seen
553d ago
Apr 1
Last Seen
73d ago
17
Reports
source reports
26%
Confidence
medium
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
26%
Signal Score
26 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

36 techniques

Network Information

CountryTRTurkey
RegionBayraklı, Izmir
ASNAS57844
OrganizationSPDNET Telekomunikasyon A.S.

Feed Intelligence Summary

17 reports26% confidence
17
Source reports
26%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaustraliaauthenticationbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdecoy systemdistributed attackseurope/asiaexploitation activityftpidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attackipv4kfsensor honeypotlateral movementlogin attemptslogin brute forcemalicious network activitymalicious softwaremalwaremalware capturemirai botnetnetworknetwork attacksnetwork enumerationnetwork intrusionnetwork intrusion attemptnetwork probingnetwork reconnaissancenetwork scanningnetwork securityoceaniapassword attacksprocess injectionprotocol exploitationreconnaissancereconnaissance activityremote accessremote servicesresearchedscanscannersecurity operationssecurity policyself-signedssh attackt1016t1018t1021t1021.001t1021.002t1021.004t1040t1046t1055t1056.001t1059t1059.001t1071.001t1076t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1563t1565t1583t1589t1595t1595.001t1595.002t1595.003tcp protocoltelecommunicationstelnet threatthreat actorthreat intelligencethreat preventiontor nodeturkeyvoip

Activity Timeline

1 total obs
Apr 1Apr 1

Threat Activity Heatmap

· Peak: 2026-04-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
26
SIGNAL
Signal Score
26%
Confidence
17
Reports
First seenDec 7, 2024
Last seenApr 1, 2026
GeolocationTR
CountryTurkey
LocationBayraklı, Izmir
ASNAS57844
OrgSPDNET Telekomunikasyon A.S.
Coords41.0214, 28.9948

VirusTotal

Not checked

WHOIS

description
Bruteforce, scanning, details in pulse
raw
inetnum: 178.20.231.0 - 178.20.231.255 netname: SPD-Net descr: SPDNET Telekomunikasyon A.S. country: TR admin-c: CE1532-RIPE tech-c: CE1532-RIPE status: ASSIGNED PA mnt-by: MNT-SPD mnt-lower: MNT-SPD mnt-routes: MNT-SPD created: 2022-11-21T11:34:09Z last-modified: 2023-03-21T19:20:36Z source: RIPE geoloc: 38.4536879 27.1766474 remarks: ********************ENGLISH********************* remarks: *** Abuse Reports to :[email protected] *** remarks: *** This IP block is used for web hosting, *** remarks: *** dedicated and co-located servers. In *** remarks: *** case of spam, please only deal with *** remarks: *** originator IP only. *** remarks: *** DO NOT DEAL WITH THE WHOLE IP BLOCK *** remarks: ************************************************ remarks: ********************TURKISH********************* remarks: *** Abuse Reports to :[email protected] *** remarks: *** Bu ip blogu web hosting, kiralik sunucu *** remarks: *** ve sunucu barindirma hizmetleri icin *** remarks: *** kullanilmaktadir. Eger iplerimizden *** remarks: *** spam gonderilirse lutfen sadece *** remarks: *** gonderen ip ile ilgili islem yapiniz. *** remarks: *** TUM IP BLOGU ILE ILGILI ISLEM YAPMAYINIZ *** remarks: ************************************************ person: Cahit Eyigunlu address: Adalet Mah. Manas Bulv. Folkart Towers A Kule No:47/B K: 26 D: 2601 Bayrakli/izmir phone: +908508409773 nic-hdl: CE1532-RIPE mnt-by: MNT-SPD created: 2012-03-01T22:59:07Z last-modified: 2022-04-25T19:53:41Z source: RIPE # Filtered route: 178.20.224.0/21 descr: SPDNet Telekomunikasyon A.S. origin: AS57844 mnt-by: MNT-SPD created: 2012-08-20T17:29:54Z last-modified: 2015-03-14T13:13:29Z source: RIPE
references
https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 17 threat reports