IOC Radar
IPMediumSignal 78/100

185.202.238.23

Location
GermanyGermany
Lauterbourg, NH
ASN
AS51167
Contabo GmbH
First Seen
Apr 15, 2026
Last Seen
Apr 23, 2026
Apr 15
First Seen
60d ago
Apr 23
Last Seen
52d ago
8
Reports
source reports
78%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

4 techniques

Network Information

CountryDEGermany
RegionLauterbourg, NH
ASNAS51167
OrganizationContabo GmbH

Feed Intelligence Summary

8 reports78% confidence
8
Source reports
78%
Confidence score
Category tags
active scanactive scanningbrute forcecredential accesscredential stuffingeuropeexploitation activityfrancegermanyidentity & access exploitationindicatornetherlandsnetworkreconnaissanceresearchedscannerssh attackt1110.002t1595.001t1595.002t1595.003

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
8
Reports
First seenApr 15, 2026
Last seenApr 23, 2026
GeolocationDE
CountryGermany
LocationLauterbourg, NH
ASNAS51167
OrgContabo GmbH
Coords52.3716, 4.8883

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 185.202.238.0 - 185.202.239.255 netname: TT-2021120407 descr: Contabo GmbH country: DE org: ORG-CG313-RIPE admin-c: MH7476-RIPE tech-c: MH7476-RIPE abuse-c: MH12453-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO created: 2021-12-03T23:36:54Z last-modified: 2021-12-06T07:36:07Z source: RIPE organisation: ORG-CG313-RIPE org-name: Contabo GmbH org-type: other remarks: * Please direct all complaints about Internet abuse like Spam, hacking or scans * remarks: * to [email protected] . This will guarantee fastest processing possible. * address: Welfenstrasse 22 address: 81541 address: Munchen address: GERMANY phone: +498921268372 fax-no: +498921665862 abuse-c: MH12453-RIPE mnt-ref: MNT-CONTABO mnt-by: MNT-CONTABO mnt-ref: de-buechvps1-1-mnt mnt-ref: mnt-de-bnc-1 mnt-by: de-buechvps1-1-mnt mnt-by: mnt-de-bnc-1 created: 2021-09-29T14:30:02Z last-modified: 2025-11-26T16:22:44Z source: RIPE # Filtered person: Johannes Selg address: Contabo GmbH address: Welfenstr. 22 address: 81541 M�nchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO mnt-by: MNT-GIGA-HOSTING created: 2010-01-04T10:41:37Z last-modified: 2025-12-05T12:12:21Z source: RIPE route: 185.202.238.0/23 descr: CONTABO origin: AS51167 mnt-by: MNT-CONTABO created: 2021-12-03T23:37:16Z last-modified: 2021-12-06T07:34:10Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 8 threat reports