IOC Radar
IPMediumSignal 86/100

185.2.14.214

Location
Iran, Islamic Republic ofIran, Islamic Republic of
Tehran, 23
ASN
AS57497
Raya Negar Radin Namdar Information and Technology Company
First Seen
Jun 2, 2026
Last Seen
Jun 12, 2026
Jun 2
First Seen
26d ago
Jun 12
Last Seen
16d ago
13
Reports
source reports
86%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
86%
Signal Score
86 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

1 techniques

Network Information

CountryIRIran, Islamic Republic of
RegionTehran, 23
ASNAS57497
OrganizationRaya Negar Radin Namdar Information and Technology Company

Feed Intelligence Summary

13 reports86% confidence
13
Source reports
86%
Confidence score
Category tags
abuseactive scanaptasiaaustraliabad reputationbad web botbotnet activitybrute forcebrute-forcebruteforceexploitation activityexploited hosthackinginbound scanindicatoririraniran, islamic republic ofnetworkoceaniaphishingransomwareresearchedscanscannersipsocradar honeypotssht1595threat actorweb app attack

Activity Timeline

1 total obs
Jun 12Jun 12

Threat Activity Heatmap

· Peak: 2026-06-12
Less
More
Mon
Wed
Fri
Jun
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
86%
Confidence
13
Reports
First seenJun 2, 2026
Last seenJun 12, 2026
GeolocationIR
CountryIran, Islamic Republic of
LocationTehran, 23
ASNAS57497
OrgRaya Negar Radin Namdar Information and Technology Company
Coords35.7270, 51.3336

VirusTotal

Not checked

WHOIS

description
IPV4 hosts detected performing scans on production environment located in Australia.
raw
inetnum: 185.2.14.0 - 185.2.14.255 descr: Raya Negar Radin Namdar Information and Technology Company netname: RayaNegar abuse-c: ACRO30709-RIPE country: IR admin-c: RNRN3-RIPE tech-c: RNRN3-RIPE status: ASSIGNED PA mnt-by: FH72714-MNT created: 2022-08-24T06:12:02Z last-modified: 2022-08-24T06:15:09Z source: RIPE role: Raya Negar Radin Namdar Information and Technology Company address: Uni22 , 6Floor , NO . 507 , Danesh Amoz blvd ,Karaj , Alborz abuse-mailbox: [email protected] phone: +982166530198 nic-hdl: RNRN3-RIPE mnt-by: FH72714-MNT created: 2019-07-17T03:51:27Z last-modified: 2019-07-17T03:55:39Z source: RIPE # Filtered route: 185.2.14.0/24 origin: AS57497 mnt-by: FH72714-MNT created: 2017-07-31T16:30:33Z last-modified: 2017-07-31T16:30:33Z source: RIPE
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 26 days ago · Last seen 16 days ago
Appeared in 13 threat reports