IOC Radar
IPMediumSignal 47/100

179.43.177.220

Location
SwitzerlandSwitzerland
Rümlang, Zurich
ASN
AS51852
Private Layer Inc
First Seen
May 13, 2026
Last Seen
May 24, 2026
May 13
First Seen
35d ago
May 24
Last Seen
23d ago
6
Reports
source reports
47%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
47%
Signal Score
47 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryCHSwitzerland
RegionRümlang, Zurich
ASNAS51852
OrganizationPrivate Layer Inc

IP Category

Proxy
Proxy server

Feed Intelligence Summary

6 reports47% confidence
6
Source reports
47%
Confidence score
Category tags
abusealienvault_ransomwareaptbad reputationbrute forcechcredentialcredential stuffingda6ah3europegoceqc6skidentity & access exploitationindicatornetworknetwork iocsproxyransomwareresearchedrnuarbvf urlsocks5 proxythreat actorz5brjsogj789

Activity Timeline

1 total obs
May 24May 24

Threat Activity Heatmap

· Peak: 2026-05-24
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
47
SIGNAL
Signal Score
47%
Confidence
6
Reports
First seenMay 13, 2026
Last seenMay 24, 2026
GeolocationCH
CountrySwitzerland
LocationRümlang, Zurich
ASNAS51852
OrgPrivate Layer Inc
Coords47.3769, 8.5417
Proxy

VirusTotal

Not checked

WHOIS

description
CC=CH ASN=AS51852 private layer inc
raw
NetRange: 179.0.0.0 - 179.255.255.255 CIDR: 179.0.0.0/8 NetName: LACNIC-179 NetHandle: NET-179-0-0-0-1 Parent: () NetType: Allocated to LACNIC OriginAS: Organization: Latin American and Caribbean IP address Regional Registry (LACNIC) RegDate: 2011-01-04 Updated: 2011-02-08 Comment: This IP address range is under LACNIC responsibility Comment: for further allocations to users in LACNIC region. Comment: Please see http://www.lacnic.net/ for further details, Comment: or check the WHOIS server located at http://whois.lacnic.net Ref: https://rdap.arin.net/registry/ip/179.0.0.0 ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois ResourceLink: whois.lacnic.net OrgName: Latin American and Caribbean IP address Regional Registry OrgId: LACNIC Address: Rambla Republica de Mexico 6125 City: Montevideo StateProv: PostalCode: 11400 Country: UY RegDate: 2002-07-27 Updated: 2018-03-15 Ref: https://rdap.arin.net/registry/entity/LACNIC ReferralServer: whois://whois.lacnic.net ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois OrgTechHandle: LACNIC-ARIN OrgTechName: LACNIC Whois Info OrgTechPhone: +598-2604-2222 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/LACNIC-ARIN OrgAbuseHandle: LWI100-ARIN OrgAbuseName: LACNIC Whois Info OrgAbusePhone: +598-2604-2222 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/LWI100-ARIN Socket not responding: [Errno 111] Connection refused

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 23 days ago
Appeared in 6 threat reports