IOC Radar
IPMediumSignal 83/100

188.149.110.233

Location
SwedenSweden
Örebro, AB
ASN
AS1257
Tele2 AB
First Seen
Apr 17, 2026
Last Seen
Apr 24, 2026
Apr 17
First Seen
50d ago
Apr 24
Last Seen
43d ago
10
Reports
source reports
83%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
83%
Signal Score
83 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

1 techniques

Network Information

CountrySESweden
RegionÖrebro, AB
ASNAS1257
OrganizationTele2 AB

Feed Intelligence Summary

10 reports83% confidence
10
Source reports
83%
Confidence score
Category tags
abuseactive scanaustraliabad reputationblocklistbrute forcebruteforceeuropeexploitation activityindicatornetworkoceaniaresearchedscannersshssh attackswedent1110

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
83
SIGNAL
Signal Score
83%
Confidence
10
Reports
First seenApr 17, 2026
Last seenApr 24, 2026
GeolocationSE
CountrySweden
LocationÖrebro, AB
ASNAS1257
OrgTele2 AB
Coords59.2750, 18.0435

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
inetnum: 188.148.0.0 - 188.149.255.255 netname: SE-TELE2-BROADBAND descr: In case of improper use, please mail <[email protected]> country: SE geoloc: 59.355596110016315 18.0615234375 language: SE admin-c: SWIP-RIPE tech-c: SWIP-RIPE status: ASSIGNED PA mnt-by: SWIPNET-LIR-MNT mnt-lower: SWIPNET-LIR-MNT mnt-routes: COMHEM-MNT created: 2018-11-14T15:12:54Z last-modified: 2021-05-04T09:58:49Z source: RIPE role: Swipnet Staff address: Tele2 AB/Swedish IP Network address: IP Registry address: Torshamnsgatan 17 164 40 Kista SWEDEN fax-no: +46 8 5626 42 10 abuse-mailbox: [email protected] remarks: The database object describes the staff of SWIPNET LIR. admin-c: ROSI3-RIPE admin-c: TH6544-RIPE tech-c: ROSI3-RIPE tech-c: TH6544-RIPE nic-hdl: SWIP-RIPE mnt-by: SWIPNET-LIR-MNT created: 2002-03-21T14:25:04Z last-modified: 2022-11-23T10:36:53Z source: RIPE # Filtered route: 188.148.0.0/14 origin: AS1257 mnt-by: AS1257-MNT created: 2021-07-13T10:14:07Z last-modified: 2021-07-13T10:14:07Z source: RIPE route: 188.148.0.0/14 origin: AS39651 mnt-by: COMHEM-MNT created: 2018-11-15T09:39:02Z last-modified: 2018-11-15T09:39:02Z source: RIPE
references
https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 10 threat reports