IOC Radar
IPMediumSignal 67/100

186.38.62.52

Location
ArgentinaArgentina
Coronel Brandsen, Buenos Aires
ASN
AS22927
Scdplanet S.A
First Seen
Jan 24, 2026
Last Seen
May 27, 2026
Jan 24
First Seen
142d ago
May 27
Last Seen
18d ago
9
Reports
source reports
67%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
67%
Signal Score
67 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryARArgentina
RegionCoronel Brandsen, Buenos Aires
ASNAS22927
OrganizationScdplanet S.A

IP Category

Proxy
Proxy server

Feed Intelligence Summary

9 reports67% confidence
9
Source reports
67%
Confidence score
Category tags
active scanactive scanningaptarargentinabad web botbotnet activitybrute forcebrute force attackcredential accesscredential stuffingddosddos attackexploitation activityidentity & access exploitationimapimap attackindicatornetworkpassword attacksproxyreconnaissanceresearchedscannersmtpsmtp attackersouth americassh attackt1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003threat actortor node

Activity Timeline

1 total obs
May 27May 27

Threat Activity Heatmap

· Peak: 2026-05-27
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
67
SIGNAL
Signal Score
67%
Confidence
9
Reports
First seenJan 24, 2026
Last seenMay 27, 2026
GeolocationAR
CountryArgentina
LocationCoronel Brandsen, Buenos Aires
ASNAS22927
OrgScdplanet S.A
Coords-35.1680, -58.2374
Proxy

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 186.38.62.0/25 status: reallocated aut-num: AS265736 aut-num: AS22927 owner: SCDPLANET S.A. ownerid: AR-SPSA21-LACNIC responsible: ARCHENTI ALEJANDRO [email protected]. address: LAS HERAS 957 BRANDSEN AR, 1980, address: 1980 - BRANDSEN - BA country: AR phone: +54 2223 442115 owner-c: PMT11 tech-c: TEA abuse-c: TEA created: 20140721 changed: 20140721 inetnum-up: 186.38.0.0/16 nic-hdl: PMT11 person: PABLO MARTIN TRASIERRA e-mail: [email protected] address: LAS HERAS, 957, address: 1980 - BRANDSEN - BUENOS AIRES country: AR phone: +54 2215365922 created: 20170512 changed: 20250812 nic-hdl: TEA person: Telefonica de Argentina e-mail: [email protected] address: AV. ING. HUERGO, 723, address: 1065 - Capital Federal - BA country: AR phone: +54 11 43335000 created: 20030618 changed: 20250828

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 18 days ago
Appeared in 9 threat reports