IOC Radar
IPMediumSignal 71/100

185.242.3.80

Location
GermanyGermany
Frankfurt am Main, Hesse
ASN
AS60223
Felcloud
First Seen
Mar 23, 2026
Last Seen
May 21, 2026
Mar 23
First Seen
85d ago
May 21
Last Seen
25d ago
14
Reports
source reports
71%
Confidence
medium
Found in 14 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryDEGermany
RegionFrankfurt am Main, Hesse
ASNAS60223
OrganizationFelcloud

Feed Intelligence Summary

14 reports71% confidence
14
Source reports
71%
Confidence score
Category tags
abuseactive scanapacheapache attackeraptbad reputationbad web botblocklistbotnet activitybrute forcebrute force attackerbrute-forcebruteforcecredential stuffingcredential-attackddosddos attackdeeuropeexploitation activityexploited hostgbgermanyhackingidentity & access exploitationindicatoriot securityiot targetednetherlandsnetworknorth americaphishingresearchedscannerspamsshthreat actorukraineunited kingdomunited statesuswebweb app attackweb spam

Activity Timeline

1 total obs
May 21May 21

Threat Activity Heatmap

· Peak: 2026-05-21
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
14
Reports
First seenMar 23, 2026
Last seenMay 21, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS60223
OrgFelcloud
Coords50.1109, 8.6821

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected performing web attacks against Cloudflare honeypot edge
raw
inetnum: 185.242.3.0 - 185.242.3.255 org: ORG-FA1428-RIPE netname: Felcloud-24 country: US admin-c: FN3930-RIPE tech-c: FN3930-RIPE status: ASSIGNED PA abuse-c: ACRO60931-RIPE created: 2026-01-27T11:29:35Z last-modified: 2026-01-27T11:31:11Z source: RIPE mnt-by: FELCLOUDNET-MNT organisation: ORG-FA1428-RIPE org-name: Felcloud org-type: OTHER address: 1314 Ogden St Philadelphia, PA 19123 US country: US abuse-c: ACRO60931-RIPE mnt-ref: DEMENIN-MNT created: 2026-01-22T21:04:17Z last-modified: 2026-01-22T21:04:17Z source: RIPE # Filtered mnt-by: FELCLOUDNET-MNT role: FELCLOUD NOC address: 1314 Ogden St Philadelphia, PA 19123 US nic-hdl: FN3930-RIPE mnt-by: FELCLOUDNET-MNT created: 2026-01-22T20:57:51Z last-modified: 2026-01-22T20:57:51Z source: RIPE # Filtered route: 185.242.3.0/24 origin: AS60223 created: 2026-01-27T11:30:24Z last-modified: 2026-01-27T11:30:39Z source: RIPE mnt-by: FELCLOUDNET-MNT

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 25 days ago
Appeared in 14 threat reports