IPMediumSignal 75/100
185.196.10.10
Location
SwitzerlandBern, Bern
First Seen
Jan 4, 2024
Last Seen
Apr 16, 2026
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
75%
Signal Score
75 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountrySwitzerland
SwitzerlandRegionBern, Bern
OrganizationGlobal-Data System IT Corporation
Feed Intelligence Summary
16 reports75% confidence
16
Source reports
75%
Confidence score
Category tags
account brute forceactive scanactive scanningaptasyncratattackbianlianbotnetbotnet activitybrute forcec2cobalt-strikecobaltstrikecommand & controlcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosdeimosdenial of servicedistributed attackseuropeexploitation activityftpftp brute forcehak5_cloud_c2havochookbothttp scannerhttpsidentity & access exploitationindicatorinjection activitymalicious activitymalicious campaign activitymalicious softwaremalwaremythicnetsupportratnetworknetwork attacksnetwork intrusion attemptsnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynorth americapegasusphishingphishing attackprocess injectionprotocol exploitationqakbotransomwarerat activityreconnaissanceremcosremcos trojanremote accessremote servicesresearchedreverse_sshsecurity operationssocial engineeringssh attackt1003t1005t1016t1020t1021t1021.001t1040t1041t1046t1055t1059t1059.003t1068t1071t1071.001t1076t1078t1083t1087t1105t1110t1110.002t1190t1204t1486t1496t1499.002t1499.003t1547t1555t1563t1565t1566t1566.001t1566.002t1566.003t1567t1573t1588t1592t1595t1595.001t1595.002t1595.003tcp protocoltelnet threatthreat actorthreat intelligencetor nodeunited kingdomunited statesweb traffic
Activity Timeline
Apr 16Apr 16
Threat Activity Heatmap
· Peak: 2026-04-16LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
75
SIGNAL
Signal Score
75%
Confidence
16
Reports
First seenJan 4, 2024
Last seenApr 16, 2026
GeolocationCH
CountrySwitzerland
LocationBern, Bern
OrgGlobal-Data System IT Corporation
Coords37.7510, -97.8220
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 185.196.8.0 - 185.196.11.255 netname: SC-GLOBAL-DATA-20170323 country: CH org: ORG-GSIC1-RIPE admin-c: CA11533-RIPE tech-c: CA11533-RIPE status: ALLOCATED PA mnt-by: lir-sc-global-data-1-MNT mnt-by: RIPE-NCC-HM-MNT created: 2024-07-05T12:01:41Z last-modified: 2025-02-16T13:59:16Z source: RIPE organisation: ORG-GSIC1-RIPE org-name: Global-Data System IT Corporation country: SC org-type: LIR address: House of Francis, Room 303, Ile Du Port, address: 0000 address: Mahe address: SEYCHELLES phone: +447465226377 admin-c: CA11533-RIPE tech-c: CA11533-RIPE abuse-c: AR75606-RIPE mnt-ref: lir-sc-global-data-1-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: lir-sc-global-data-1-MNT created: 2024-05-28T08:00:31Z last-modified: 2024-07-09T14:18:25Z source: RIPE # Filtered role: contact address: SEYCHELLES address: Mahe address: 0000 address: House of Francis, Room 303, Ile Du Port, phone: +447864538641 nic-hdl: CA11533-RIPE mnt-by: lir-sc-global-data-1-MNT created: 2024-05-28T08:00:30Z last-modified: 2024-05-28T08:00:30Z source: RIPE # Filtered
- references
- https://x.com/FalconFeedsio/status/1958732002037047317, https://x.com/FalconFeedsio/status/1958738494970634708, https://x.com/FalconFeedsio/status/1958868498878169512, https://x.com/FalconFeedsio/status/1958976836047708304, https://x.com/FalconFeedsio/status/1958984550396129578, https://x.com/FalconFeedsio/status/1958989632403619968, https://x.com/drb_ra/status/1956175082943893967, https://x.com/drb_ra/status/1956175222165446910, https://x.com/drb_ra/status/1956246368525119637, https://x.com/drb_ra/status/1956246507104932051, https://x.com/drb_ra/status/1956246645969989797, https://x.com/drb_ra/status/1956246784667156655, https://x.com/drb_ra/status/1956246923662516366, https://x.com/drb_ra/status/1956247062242320484, https://x.com/drb_ra/status/1956247200104616062, https://x.com/drb_ra/status/1956247337572896983, https://x.com/drb_ra/status/1956247475620118923, https://x.com/drb_ra/status/1956248120485879914, https://x.com/drb_ra/status/1956248258973458600, https://x.com/drb_ra/status/1956248396810842124, https://x.com/drb_ra/status/1956248538918109295, https://x.com/drb_ra/status/1956248677888004599, https://x.com/drb_ra/status/1956248816341930076, https://x.com/drb_ra/status/1956248954233934315, https://x.com/drb_ra/status/1956249091878346889, https://x.com/drb_ra/status/1956249229887963482, https://x.com/drb_ra/status/1956249368148971783, https://x.com/drb_ra/status/1956249506561085905, https://x.com/drb_ra/status/1956249644779905138, https://x.com/drb_ra/status/1956249783422832826, https://x.com/drb_ra/status/1956249921142526381, https://x.com/drb_ra/status/1956250060057915682, https://x.com/drb_ra/status/1956250197912379510, https://x.com/drb_ra/status/1956250336496136527, https://x.com/drb_ra/status/1956250474707083328, https://x.com/drb_ra/status/1956306923298365602, https://x.com/drb_ra/status/1956309092072292578, https://x.com/drb_ra/status/1956309230438273181, https://x.com/drb_ra/status/1956309371069088160, https://x.com/drb_ra/status/1956309511184019613, https://x.com/drb_ra/status/1956309649461821669, https://x.com/drb_ra/status/1956309789132062870, https://x.com/drb_ra/status/1956311959520837733, https://x.com/drb_ra/status/1956312097341485086, https://x.com/drb_ra/status/1956312236982452550, https://x.com/drb_ra/status/1956312375251832883, https://x.com/drb_ra/status/1956312514632855692, https://x.com/drb_ra/status/1956313160920473854, https://x.com/drb_ra/status/1956427434871472433, https://x.com/drb_ra/status/1956427573191192785, https://x.com/drb_ra/status/1956427714451108348, https://x.com/drb_ra/status/1956427853710389499, https://x.com/drb_ra/status/1956427992843870601, https://x.com/drb_ra/status/1956428132724113742, https://x.com/drb_ra/status/1956428275359588754, https://x.com/drb_ra/status/1956428416238162053, https://x.com/drb_ra/status/1956428554238845053, https://x.com/drb_ra/status/1956428694316368040, https://x.com/drb_ra/status/1956428832086311166, https://x.com/drb_ra/status/1956428970141917329, https://x.com/drb_ra/status/1956429108554203377, https://x.com/drb_ra/status/1956429246714331208, https://x.com/drb_ra/status/1956429385164087710, https://x.com/drb_ra/status/1956430031632126461, https://x.com/drb_ra/status/1956430170140643672, https://x.com/drb_ra/status/1956430309253058796, https://x.com/drb_ra/status/1956430449309274606, https://x.com/drb_ra/status/1956430588388282416, https://x.com/drb_ra/status/1956430727458742363, https://x.com/drb_ra/status/1956430865904361953, https://x.com/drb_ra/status/1956431004874285445, https://x.com/drb_ra/status/1956431144112542069, https://x.com/drb_ra/status/1956431282361053257, https://x.com/drb_ra/status/1956431421213450644, https://x.com/drb_ra/status/1956431559709364286, https://x.com/drb_ra/status/1956431702231761382, https://x.com/drb_ra/status/1956431840417403020, https://x.com/drb_ra/status/1956431981115245051, https://x.com/drb_ra/status/1956432119929950575, https://x.com/drb_ra/status/1956432257767407988, https://x.com/drb_ra/status/1956432396695265476, https://x.com/drb_ra/status/1956432535015100524, https://x.com/drb_ra/status/1956432674060706177, https://x.com/drb_ra/status/1956432832999330020, https://x.com/drb_ra/status/1956462900438028661, https://x.com/drb_ra/status/1956463039219122647, https://x.com/drb_ra/status/1956463686320631970, https://x.com/drb_ra/status/1956470421919797250
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 2 months ago
Appeared in 16 threat reports