IOC Radar
IPMediumSignal 39/100

185.242.226.30

Location
NetherlandsNetherlands
Amsterdam, NH
ASN
AS202425
AI Spera
First Seen
Feb 14, 2024
Last Seen
Jun 17, 2026
Feb 14
First Seen
864d ago
Jun 17
Last Seen
10d ago
23
Reports
source reports
39%
Confidence
medium
Found in 23 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
39%
Signal Score
39 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

25 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, NH
ASNAS202425
OrganizationAI Spera

Feed Intelligence Summary

23 reports39% confidence
23
Source reports
39%
Confidence score
Category tags
abuseack scanactive scanactive scanningapacheapache attackerattackauto-generated securitybad reputationbeningbening scannerbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolconnect scancredential accesscredential stuffingcriminal_ip-benignctadata exfiltrationdata store exposureddosddos attackdecoy systemdenial of servicedistributed attackseuropeexploitation activityexploited hostfinfin scanhackingidentity & access exploitationindicatorinjection activitykfsensor honeypotmalicious activitymalicious softwaremalwaremalware capturenetherlandsnetworknetwork attacksnetwork mappingnetwork port scanningnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnlnorth americanull scanopen port detectionpassword attacksprocess injectionransomwarereconnaissancereconnaissance activityremote accessremote servicesresearchedsansscannerservice enumerationservice scansocradar honeypotssh attackstealth scansynsyn scant1016t1018t1021.001t1040t1046t1055t1071.001t1076t1083t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1563t1565t1589t1595t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencetor nodeudp port scanunited statesverified-benignxmasxmas scan

Activity Timeline

1 total obs
Jun 17Jun 17

Threat Activity Heatmap

· Peak: 2026-06-17
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
39
SIGNAL
Signal Score
39%
Confidence
23
Reports
First seenFeb 14, 2024
Last seenJun 17, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, NH
ASNAS202425
OrgAI Spera
Coords52.5024, 4.8077

VirusTotal

Not checked

WHOIS

description
Port Scan 2024-10-02T22:40:31.487Z -> 185.242.226.30 scanned port 123 on one of our servers
raw
Socket not responding: timed out
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, http://cinsscore.com/list/ci-badguys.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 10 days ago
Appeared in 23 threat reports