IPMediumSignal 46/100
185.49.70.76
Location
GermanyFrankfurt am Main, Hesse
ASN
AS28753
LeaseWeb DE
First Seen
Oct 20, 2025
Last Seen
Oct 21, 2025
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
46%
Signal Score
46 / 100
IDS Rule
No
Threat Context
Tags
Network Information
CountryGermany
GermanyRegionFrankfurt am Main, Hesse
ASNAS28753
OrganizationLeaseWeb DE
Feed Intelligence Summary
4 reports46% confidence
4
Source reports
46%
Confidence score
Category tags
abusech-threatfox-c2cbad reputationc2command & controleuropegermanyindicatornetworkresearchedself-signedthreatfox iocs
Activity Timeline
Oct 21Oct 21
Threat Activity Heatmap
· Peak: 2025-10-21LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
46
SIGNAL
Signal Score
46%
Confidence
4
Reports
First seenOct 20, 2025
Last seenOct 21, 2025
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS28753
OrgLeaseWeb DE
Coords50.1109, 8.6821
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 185.49.70.0 - 185.49.70.127 netname: IEG1338_HALL_PART1 country: DE admin-c: VH1498-RIPE tech-c: VH1498-RIPE status: ASSIGNED PA mnt-by: uk-nsomnia-1-mnt created: 2017-04-12T12:07:57Z last-modified: 2017-04-12T12:07:57Z source: RIPE person: Nsomnia Networks LP address: 39/5 Granton Crescent address: EH5 1BN address: Edinburgh address: UNITED KINGDOM phone: +447441917763 nic-hdl: VH1498-RIPE mnt-by: uk-nsomnia-1-mnt created: 2017-01-26T14:16:08Z last-modified: 2021-10-06T02:19:30Z source: RIPE route: 185.49.68.0/22 descr: routed via LeaseWeb DE origin: AS28753 mnt-by: LEASEWEB-DE-MNT created: 2015-06-04T13:21:37Z last-modified: 2015-10-22T11:00:42Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 8 months ago · Last seen 8 months ago
Appeared in 4 threat reports