IOC Radar
IPMediumSignal 100/100

179.60.195.174

Location
BelgiumBelgium
Brussels, Brussels Capital
ASN
AS32934
Edge Network Services Ltd
First Seen
Dec 17, 2020
Last Seen
Apr 25, 2026
Dec 17
First Seen
2013d ago
Apr 25
Last Seen
58d ago
11
Reports
source reports
99%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

58 techniques

Network Information

CountryBEBelgium
RegionBrussels, Brussels Capital
ASNAS32934
OrganizationEdge Network Services Ltd

Feed Intelligence Summary

11 reports99% confidence
11
Source reports
99%
Confidence score
Category tags
aaaaabilityabuseacademic institutionsacceptaccessaccess controlaccess deniedaccount securityactiveactive relatedactive scanactive scanningactive threatadd tagaddressadobe dynamicadversary tagsaerospace & defenseahmannahmann specialaigakamaialertsalienvault_ransomwareall octoseekall scoreblueall searchallocate rwxamericaanalysis dateanalysis ob0001analysis ob0002analyzeanchor hrefsandroid deviceanyone elseapacheaposterappleapple attackapple engineeringapple iosapple phishingarizonaartemisascii textasiaasnone unitedasyncratattattackattacksattacks againstauthorityav detectionav detectionsawfulb0001 processb0003 delayedbackbackdoorbad loginbad reputationbahamutbazarbebelgiumbell southbeningbening scannerbodybody lengthbotnet activitybrianbrian sabeybrian sabeybrowse scanbrute forcebrute force passwordsbuilderbundledbusiness valueca issuersca1 odigicertcallback phishingcanadacanvascapture t1140catalog treecatherine daisy colemancfqirgdhj5 httpcfqirgdhj5 urlchinachristopher ahmannchromecidrcivil servicesck idck matrixck t1027classclick-based attackcmdcnameco numbercobalt strikecode executioncode injectioncolorado statecommandcommand & controlcommand and controlcommand decodecommand executioncommand historycommunication protocolcommunication technologiescommunity managementcomspecconfigconhostcontactcontacted urlscontains pdbcontent sharingcontrolcontrols t1562copycorecorporate lawcosta ricacounselcount blacklistcountries addcountry malwarecreation datecredential harvestingcredential stuffingcredential theftcrowdstrikecryptocrypto threatcryptocurrencycryptocurrency threatscryptojackingcus cndigicertcyber armycyber defensecyber stalkingdark webdatadata accessdata breachdata copyingdata encryptiondata exfiltrationdata leakdata manipulationdata store exposuredata transferddosddos attacksdefensedefense contractingdefense logisticsdefense systemsdefense technologydelete cdetection listdigital platformsdiscovery t1069displaynamedistribution managementdiv divdll sideloadingdnamednsdns attackdomaindomains partdos executabledoxingdroppedduptwuxdynamicloadere1082 filee1083 impacte1203 windowseconomic impacteducational resourceseducational serviceseducational technologyelectronic health recordsemotetencryptencryptionendpoints allentriesenumerateerroret cinset torethics violationeuropeevasion ob0006executable fileexecuteexecution flowexitexpirationexpiration dateexploitation activityextortionfacebook_crawler-benignfactoryfalcon sandboxfalsefancy bearfastly errorfearfeeds iocfilefilesfiles droppedfiles ipfinal urlfinancefirstflow t1574for privacyformfoundfreight forwardingftp usernamefull namefunctiongartnergeneral fullgeneratorgenericgeneric windosgermanyget filegirls doporngmtngo daddygophergovernment technologygraphgravity ratgroups addhackershackinghall renderhasheshashes filesheaders dateheaders nelheaders xcachehealth care and social assistancehealth information technologyhealthcare information systemshighhigh levelhigher educationhighesthistoricalhistorical sslhistoryhospital managementhostnamehostname enumerationhtml documenthtml infohtml internethttphttp attackhttp responsehttp scannerhttpshybridhybrid analysisicann whoisicefogicloudico rtgroupiconidentity & access exploitationids detectionsinc validityindicatorinformation gatheringinformation technologyinformation theftinfostealerinfrastructure acquisitionreconnaissanceingress tool transferinjection activityinput validation bypassinstallintelintellectual property lawinternet of thingsinvalid urlinventory managementiocsiocs kbionosionosasiot botnetiot securityiot/ics attackiphone phishingipv4ipv6it infrastructurejekylljohn marshallk-12 educationknown torlaw practicelaw schoollayer protocollearnlegacylegal consultinglegal professionlegal researchlegal sector targetinglegal serviceslegal technologylink functionlinux mintlocallog idlogging t1568logistics technologylogo analysislooklow risklow securitymagic quadrantmail spammermainmalicious activitymalicious downloadmalicious hostmalicious linksmalicious softwaremalvertizingmalwaremalware deploymentmalware distributionmalware foundmediamedia contentmedical servicesmediummemory patternmeta tagsmetadata analysismetromilitary operationsmirai botnetmisc attackmitremitre attmitre attkmobilemobile carriersmobile exploitationmobile networksmobile securitymobile threatmodify systemmodify toolsmodules t1129movedmsiemulti scanmutexesnamename serversnation-state activitynational securitynetworknetwork scanningneutralnew problemsnextnidsnjratno datano expirationnode trafficnorth americansonuancenumberob0007 systemobz4usfn0 httpobz4usfn0 urlonline harassmentopenopen source intelligenceoperating systemoperating system securityos2 executableosi applicationosintother services (except public administration)otx scoreblueoverlaypandapandaspassive dnspastepath traversalpatient carepattern domainspattern matchpcappdf reportpe filepegasusphishingphishing attackpleasepornhubportpostprimary requestprocessprocess injectionprocess t1543project skynetprotectprotocol t1105providepublic administrationpublic infrastructurepublic policypublic tlppulse providepulse pulsespulse submitpulse usepushputtypythonqshellquasarqueryransomwareread creconnaissancerecord typerecord valuereferences addrefreshregistry keysregulatory agenciesregulatory compliancerelayremoteremote accessremote servicesremote systemreportsreputation damagerequest emailresearchedresource hijackingresource pathrestartreverse dnsriskrobtexrootroot accountroot carounduprticon neutralsabeysafebaesample summarysamplessandboxscalaxyscan endpointsscannerscriptscript domainsscript tagsscript urlssearchsecurity nosecurity policyserversserving ipset registryasfqh4dt74w0 urlshipping servicesshowshow techniqueshowingsignals mutexessimplesitesizesize17kib typeslider pluginsmallsmear campaignsocial analyticssocial engineeringsocial mediasocial media marketingsocial media securitysocial networkingsoftware developmentsoftware exploitationspamspanspeakez securusspecial counselssh on serverssl certificatessl hostnamestagingstarfieldstatestatusstatus codestatus codesstealerstealsstixstreamstringssubidsubject publicsubmission namesubmitsubmit quasarsubvert trustsucuri firewallsupply chain attacksupply chain managementsuricata streamswitch dnssystem disruptiont1005t1021t1021.001t1027t1029t1030t1045t1055t1055 systemt1057t1059t1059 acceptt1059.001t1059.007t1064t1069t1069.001t1071t1071.001t1071.004t1078t1095t1105t1105 ingresst1113t1114t1133t1140t1190t1197t1203t1204.001t1204.002t1210t1480t1486t1490t1496t1497 queryt1499.002t1553t1562t1565t1566t1566.001t1566.002t1566.003t1566.004t1568t1569.002t1574t1583t1587.001t1589t1589.001t1590.001t1593t1595.001t1595.002t1595.003t1598t1608tag counttag managementtaggingtam legaltargettargeted threat campaignteams apitechtelecom servicestelecommunicationstempthreatthreat actorthreat analyzerthreat networkthreat preventionthreat rounduptitle safebaetls rsatls webtofseetoolstor nodetrackertransportation managementtreece alfreytridenttrojan malwaretrojandroppertsara brashearsttl valuetulachtwittertype mimetypeunicode textuniqueunitedunited kingdomunited statesunknown urlsunknown winupgradeurlsurls httpsurls tcpuseruser engagementuser executionutc bingutf8 textv3 serialverdictverified-benignverifyvirtual mobilewannacry killwarehouse operationsweb application attackweb application attacksweb application exploitationweb scrapingweb securityweb trafficwebsite malwarewhitewhois lookupwhois recordwhois sslwhois whoiswin16 newin32 exewin32 malwarewindirwindowwindows eventwindows linkwindows malwarewindows ntwindows serviceworkaposterwormwp enginewpbakery pagewritewritten cx msedgex82xd4x86xd3xe8xc2x14xml rtmanifestxoboyara detections

Activity Timeline

1 total obs
Apr 25Apr 25

Threat Activity Heatmap

· Peak: 2026-04-25
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
11
Reports
First seenDec 17, 2020
Last seenApr 25, 2026
GeolocationBE
CountryBelgium
LocationBrussels, Brussels Capital
ASNAS32934
OrgEdge Network Services Ltd
Coords50.8476, 4.3572

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 1 month ago
Appeared in 11 threat reports