IOC Radar
IPMediumSignal 99/100

179.43.149.122

Location
SwitzerlandSwitzerland
Rümlang, Zurich
ASN
AS51852
Private Layer Inc
First Seen
Sep 16, 2024
Last Seen
Apr 10, 2026
Sep 16
First Seen
648d ago
Apr 10
Last Seen
78d ago
16
Reports
source reports
99%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
99 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

41 techniques

Network Information

CountryCHSwitzerland
RegionRümlang, Zurich
ASNAS51852
OrganizationPrivate Layer Inc

IP Category

Hosting
Hosting provider

Feed Intelligence Summary

16 reports99% confidence
16
Source reports
99%
Confidence score
Category tags
abuseaccess controlack scanactive scanactive scanningapacheapache attackerattackbad reputationblacklist candidatebotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolconnect scancredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdecoy systemdenial of servicedistributed attacksenumerationenumeration activityeuropeexploitation activityfinfin port scanfin scanfirewall detectionfrancehttp scannericmpidentity & access exploitationindicatorinformation gatheringinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attackkfsensor honeypotmalicious activitymalicious softwaremalwaremalware capturemass scanningmasscanmasscan activitymirai botnetnetworknetwork attacksnetwork discoverynetwork mappingnetwork port scanningnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynmapnmap scannmap scan detectednull port scannull scanopen port detectionopen port discoveryopen portsos detectionos fingerprintingpassword attacksphishingphishing attackpossible reconnaissance activitypossible vulnerability probingpossible vulnerability scanpossible vulnerability scanningpotential exploit targetingpotential intrusion attemptpotential reconnaissance activitypotential threat activitypotential vulnerability assessmentpotential vulnerability exploitationprocess injectionproxyreconnaissancereconnaissance activityremote accessremote servicesresearchedscanscannersecurity eventsecurity policyservice detectionservice discoveryservice enumerationservice probingservice scanservice version detectionsocial engineeringssh attackstealth scansweep scansynsyn port scansyn scant1016t1016.001t1018t1021t1021.001t1021.002t1040t1046t1055t1059t1071t1071.001t1076t1083t1110.001t1110.002t1110.003t1110.004t1133t1190t1213t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1588t1588.002t1589t1589.002t1592t1592.004t1595t1595.001t1595.002t1595.003tcp protocoltelecommunicationsthreat actorthreat intelligencethreat preventiontor nodeudp port scanunauthorized access attemptvulnerability scanweb trafficxmasxmas port scanxmas scanzmap

Activity Timeline

1 total obs
Apr 10Apr 10

Threat Activity Heatmap

· Peak: 2026-04-10
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
99
SIGNAL
Signal Score
99%
Confidence
16
Reports
First seenSep 16, 2024
Last seenApr 10, 2026
GeolocationCH
CountrySwitzerland
LocationRümlang, Zurich
ASNAS51852
OrgPrivate Layer Inc
Coords47.4505, 8.5255
Hosting

VirusTotal

Not checked

WHOIS

description
Port Scan 2024-10-25T22:33:49.000Z -> 179.43.149.122 scanned port 44910 on one of our servers
references
http://cinsscore.com/list/ci-badguys.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 16 threat reports