IOC Radar
IPMediumSignal 82/100

185.55.75.125

Location
GermanyGermany
Rosendahl, NW
ASN
AS200735
MUENET GmbH
First Seen
Oct 23, 2021
Last Seen
Feb 15, 2026
Oct 23
First Seen
1695d ago
Feb 15
Last Seen
119d ago
8
Reports
source reports
82%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
82%
Signal Score
82 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

34 techniques

Network Information

CountryDEGermany
RegionRosendahl, NW
ASNAS200735
OrganizationMUENET GmbH

Feed Intelligence Summary

8 reports82% confidence
8
Source reports
82%
Confidence score
Category tags
abuseactive scanningattackbotnetbrute forcebrute force attackbrute force attemptscommand and controlcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdedecoy systemdistributed attacksdrive-by compromiseeuropeexploitation attemptsftpgermanyhoneytrap honeypotindicatorinfrastructure acquisitionreconnaissancelamplamp attackmailoney attackmailoney honeypotmalicious activitymalicious softwaremalwaremanualnetworknetwork intrusion attemptsnetwork scanningnetwork securitynetwork service scanningpassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationreconnaissanceremote servicesresearchedscannersftp attacksmtpsocial engineeringssh attackssh monitoringt1021t1040t1041t1047t1053.005t1055t1059t1059.004t1071.001t1078t1078.001t1078.002t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp/23telecommunicationstelnet threatthreat actorthreat detectionweb server attacks

Activity Timeline

1 total obs
Feb 15Feb 15

Threat Activity Heatmap

· Peak: 2026-02-15
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
82
SIGNAL
Signal Score
82%
Confidence
8
Reports
First seenOct 23, 2021
Last seenFeb 15, 2026
GeolocationDE
CountryGermany
LocationRosendahl, NW
ASNAS200735
OrgMUENET GmbH
Coords51.8323, 7.2777

VirusTotal

Not checked

WHOIS

description
2025-02-01T16:40:50.816Z Honeypot : Cowrie : Source: 185.55.75.125 Data: New connection: 185.55.75.125:42423 (172.18.0.2:23) [session: b6001674e56e]
raw
inetnum: 185.55.74.0 - 185.55.75.255 netname: MUENET-NETWORK2 descr: MUENET GmbH Connectivity country: DE admin-c: LM15901-RIPE tech-c: LM15901-RIPE status: ASSIGNED PA mnt-by: Muether created: 2015-08-04T07:50:05Z last-modified: 2015-08-04T07:50:05Z source: RIPE person: Laslo Muether address: Birkenweg 10 phone: +004916710316568 nic-hdl: LM15901-RIPE mnt-by: Muether created: 2014-04-23T12:34:49Z last-modified: 2014-04-23T12:34:49Z source: RIPE # Filtered route: 185.55.75.0/24 origin: AS200735 mnt-by: Muether created: 2019-09-05T14:13:52Z last-modified: 2019-09-05T14:13:52Z source: RIPE
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 3 months ago
Appeared in 8 threat reports