IOC Radar
IPMediumSignal 40/100

181.225.58.139

Location
Venezuela, Bolivarian Republic ofVenezuela, Bolivarian Republic of
Caracas, A
ASN
AS8053
IFX Networks Venezuela C.A
First Seen
Sep 26, 2024
Last Seen
May 30, 2026
Sep 26
First Seen
639d ago
May 30
Last Seen
28d ago
6
Reports
source reports
40%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

10 techniques

Network Information

CountryVEVenezuela, Bolivarian Republic of
RegionCaracas, A
ASNAS8053
OrganizationIFX Networks Venezuela C.A

Feed Intelligence Summary

6 reports40% confidence
6
Source reports
40%
Confidence score
Category tags
active scanactive scanningbrute forcebrute force attackbrute-forcebruteforcecowriecredential accesscredential harvestingcredential stuffingdionaeaexploitation activityexploited hostfatthackingidentity & access exploitationindicatornetworkp0fpassword attacksphishingphishing attackreconnaissanceresearchedscannersensor-taggedsocial engineeringsouth americaspamt1110.001t1110.002t1110.003t1110.004t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003tannertpotvevenezuela, bolivarian republic ofweb spam

Activity Timeline

1 total obs
May 30May 30

Threat Activity Heatmap

· Peak: 2026-05-30
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
40
SIGNAL
Signal Score
40%
Confidence
6
Reports
First seenSep 26, 2024
Last seenMay 30, 2026
GeolocationVE
CountryVenezuela, Bolivarian Republic of
LocationCaracas, A
ASNAS8053
OrgIFX Networks Venezuela C.A
Coords10.5048, -66.9208

VirusTotal

Not checked

WHOIS

description
seen in Dionaea honeypot logs; events=1; services=smbd; ports=445; cc=VE; asn=8053; asn_org=IFX Networks Venezuela C.A.
raw
inetnum: 181.225.32.0/19 status: allocated aut-num: N/A owner: IFX Networks Venezuela C.A. ownerid: VE-EMCA-LACNIC responsible: Juan C. Crespo R. address: Av El Bosque c/ Calle Santa Lucia, Torre Credicard, 56, Piso 5 address: 1050 - Caracas - DF country: VE phone: +58 2127504500 [687] owner-c: JCR5 tech-c: JCR5 abuse-c: JCR5 inetrev: 181.225.40.0/21 nserver: DNS.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 nserver: DNS2.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 inetrev: 181.225.34.0/23 nserver: DNS.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 nserver: DNS2.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 inetrev: 181.225.32.0/24 nserver: DNS.ELDISH.NET nsstat: 20260416 AA nslastaa: 20260416 nserver: DNS2.ELDISH.NET nsstat: 20260416 AA nslastaa: 20260416 inetrev: 181.225.33.0/24 nserver: DNS.ELDISH.NET nsstat: 20260411 AA nslastaa: 20260411 nserver: DNS2.ELDISH.NET nsstat: 20260411 AA nslastaa: 20260411 inetrev: 181.225.36.0/23 nserver: DNS.ELDISH.NET nsstat: 20260417 AA nslastaa: 20260417 nserver: DNS2.ELDISH.NET nsstat: 20260417 AA nslastaa: 20260417 inetrev: 181.225.39.0/24 nserver: DNS.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 nserver: DNS2.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 inetrev: 181.225.54.0/23 nserver: DNS.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 nserver: DNS2.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 inetrev: 181.225.53.0/24 nserver: DNS.ELDISH.NET nsstat: 20260417 AA nslastaa: 20260417 nserver: DNS2.ELDISH.NET nsstat: 20260417 AA nslastaa: 20260417 inetrev: 181.225.52.0/24 nserver: DNS.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 nserver: DNS2.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 inetrev: 181.225.48.0/23 nserver: DNS.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 nserver: DNS2.ELDISH.NET nsstat: 20260413 AA nslastaa: 20260413 inetrev: 181.225.51.0/24 nserver: DNS.ELDISH.NET nsstat: 20260416 AA nslastaa: 20260416 nserver: DNS2.ELDISH.NET nsstat: 20260416 AA nslastaa: 20260416 inetrev: 181.225.50.0/24 nserver: DNS.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 nserver: DNS2.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 inetrev: 181.225.58.0/23 nserver: DNS.ELDISH.NET nsstat: 20260411 AA nslastaa: 20260411 nserver: DNS2.ELDISH.NET nsstat: 20260411 AA nslastaa: 20260411 inetrev: 181.225.56.0/24 nserver: DNS.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 nserver: DNS2.ELDISH.NET nsstat: 20260415 AA nslastaa: 20260415 created: 20130109 changed: 20130109 nic-hdl: JCR5 person: Juan Carlos Crespo Román e-mail: [email protected] address: Av. Princpal del Bosque con Calle Santa Lucia, Torre Credicard, Piso 5, Oficina 56, 8053, Mobile +584141139471 address: 1050 - Chacaito - DC country: VE phone: +58 2127504508 [0000] created: 20060331 changed: 20211222

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 28 days ago
Appeared in 6 threat reports