IOC Radar
IPMediumSignal 29/100

185.135.84.43

Location
LatviaLatvia
Riga, RIX
ASN
AS56630
Melbikomas UAB
First Seen
Jun 30, 2024
Last Seen
May 10, 2026
Jun 30
First Seen
720d ago
May 10
Last Seen
42d ago
14
Reports
source reports
29%
Confidence
medium
Found in 14 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
29%
Signal Score
29 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryLVLatvia
RegionRiga, RIX
ASNAS56630
OrganizationMelbikomas UAB

IP Category

VPN
VPN exit node

Feed Intelligence Summary

14 reports29% confidence
14
Source reports
29%
Confidence score
Category tags
abuseactive scanactive scanningattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute-forcecommand and controlcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredecoy systemdistributed attackseuropeexploitation activityhackingidentity & access exploitationinformation technologyinjection activityit infrastructurelatvialvmailoney honeypotmalicious activitymalicious emailmalicious softwaremalwarenetworknetwork intrusionnetwork scanningpassword attacksphishingphishing attackphishing trapprocess injectionproxyreconnaissanceresearchedscannersftp attacksocial engineeringsoftware developmentssh attackssh monitoringt1021t1041t1055t1059t1059.004t1068t1071t1071.001t1071.004t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1595.001t1595.002t1595.003threat actortor nodevpnweb app attack

Activity Timeline

1 total obs
May 10May 10

Threat Activity Heatmap

· Peak: 2026-05-10
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
29
SIGNAL
Signal Score
29%
Confidence
14
Reports
First seenJun 30, 2024
Last seenMay 10, 2026
GeolocationLV
CountryLatvia
LocationRiga, RIX
ASNAS56630
OrgMelbikomas UAB
Coords56.9496, 24.0978
VPN

VirusTotal

Not checked

WHOIS

description
2025-03-22T10:02:21.000Z Honeypot : Mailoney : Source: 185.135.84.43 : Port: 25 : Data: Data
raw
inetnum: 185.135.84.0 - 185.135.84.255 netname: LT-MELBICOM-20160120-1 country: LV org: ORG-MU30-RIPE admin-c: MN11960-RIPE tech-c: MN11960-RIPE status: ASSIGNED PA mnt-by: MELBICOM-MNT created: 2020-12-29T13:09:53Z last-modified: 2020-12-29T13:09:53Z source: RIPE organisation: ORG-MU30-RIPE org-name: Melbikomas UAB country: LT org-type: LIR address: Svitrigailos g. 11B address: LT-03228 address: Vilnius address: LITHUANIA phone: +370 (5) 208 4428 admin-c: MN11960-RIPE tech-c: MN11960-RIPE abuse-c: AR34659-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MELBICOM-MNT mnt-ref: cyber-mnt mnt-ref: network-support-mnt mnt-by: RIPE-NCC-HM-MNT mnt-by: MELBICOM-MNT created: 2015-12-14T08:56:33Z last-modified: 2022-10-07T18:00:14Z source: RIPE # Filtered role: Melbicom NCC address: Svitrigailos g. 11B address: LT-03228 address: Vilnius, LITHUANIA phone: +370 (5) 208 4428 nic-hdl: MN11960-RIPE mnt-by: MELBICOM-MNT created: 2018-02-14T10:19:51Z last-modified: 2021-08-09T08:27:42Z source: RIPE # Filtered route: 185.135.84.0/24 origin: AS56630 mnt-by: MELBICOM-MNT created: 2020-10-12T15:06:43Z last-modified: 2020-10-12T15:06:43Z source: RIPE
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 1 month ago
Appeared in 14 threat reports