IOC Radar
IPMediumSignal 78/100

179.51.164.2

Location
BrazilBrazil
São João Evangelista, Minas Gerais
ASN
AS271173
DDDNET SERVIÇOS DE COMUNICAÇÃO LTDA
First Seen
Nov 12, 2025
Last Seen
May 29, 2026
Nov 12
First Seen
214d ago
May 29
Last Seen
16d ago
19
Reports
source reports
78%
Confidence
medium
13/91
VirusTotal
detections
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

25 techniques

Network Information

CountryBRBrazil
RegionSão João Evangelista, Minas Gerais
ASNAS271173
OrganizationDDDNET SERVIÇOS DE COMUNICAÇÃO LTDA

Feed Intelligence Summary

19 reports78% confidence
19
Source reports
78%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapacheapache attackeraptattackauthentication abuseauthentication attacksautomated attackautomated attacksbad reputationbad web botblocklist_allbotnet activitybrbrazilbrute forcebrute force attackbrute force attemptbrute-forcecommunication protocolcredential accesscredential harvestingcredential stuffingddosddos attackddos preparationdecoy systemdenial of servicedigital oceaneuropeexploitation activityexploited hostfail2ban triggeredftp brute forcehackingidentity & access exploitationindicatorinformation technologyintrusion detectionit infrastructurekill-chain exploitationkill-chain reconnaissancelogin attacklogin attemptlow-riskmalicious activitymalwarenetworknetwork attacksnetwork intrusionnetwork intrusion detectionnetwork scanningnetwork securitynetwork service scanningnoticeosintpassword attacksphishingphishing attackping of deathpossible reconnaissancereconnaissanceremote accessresearchedscanscannersecurity operationssecurity policyself-signedservice scansocial engineeringsoftware developmentsouth americaspamsshssh attackt1021t1040t1059t1071.001t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1499.001t1499.002t1499.003t1566.001t1566.002t1566.003t1589t1595t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencethreat preventiontor nodeunauthorized accessunited kingdomweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 29May 29

Threat Activity Heatmap

· Peak: 2026-05-29
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This Internet Protocol (IP) address, 179.51.164.2, is identified as a highly malicious Indicator of Compromise (IOC) with a significant risk score of 77.99. Its presence in an organization's network environment points to an imminent threat of compromise, potentially leading to unauthorized access, data exfiltration, or denial of service. The observed activity primarily involves aggressive scanning and brute-force attacks, tactics commonly employed by adversaries to gain initial access to systems…

Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
19
Reports
First seenNov 12, 2025
Last seenMay 29, 2026
GeolocationBR
CountryBrazil
LocationSão João Evangelista, Minas Gerais
ASNAS271173
OrgDDDNET SERVIÇOS DE COMUNICAÇÃO LTDA
Coords-18.5081, -42.7824

VirusTotal

13/ 91vendors flagged
14% detection rateJun 3, 2026

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 7 months ago · Last seen 16 days ago
Appeared in 19 threat reports