IOC Radar
IPMediumSignal 46/100

190.108.99.196

Location
BrazilBrazil
São João del Rei, Minas Gerais
ASN
AS28258
Vero S.A
First Seen
Oct 16, 2025
Last Seen
Apr 5, 2026
Oct 16
First Seen
240d ago
Apr 5
Last Seen
69d ago
10
Reports
source reports
46%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
46%
Signal Score
46 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

10 techniques

Network Information

CountryBRBrazil
RegionSão João del Rei, Minas Gerais
ASNAS28258
OrganizationVero S.A

IP Category

Proxy
Proxy server

Feed Intelligence Summary

10 reports46% confidence
10
Source reports
46%
Confidence score
Category tags
active scanactive scanningaptbad web botblocklist_allbotnet activitybrbrazilbrute forcebrute force attackcredential accesscredential stuffingddosdenial of serviceexploitation activityhackingidentity & access exploitationimapimap attackindicatornetworkpassword attacksproxyreconnaissanceresearchedscannersmtpsmtp attackersouth americassh attackt1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1595.001t1595.002t1595.003threat actortor nodeweb application attackweb exploitation

Activity Timeline

1 total obs
Apr 5Apr 5

Threat Activity Heatmap

· Peak: 2026-04-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This indicator of compromise (IOC), specifically the IPv4 address `190.108.99.196`, represents a significant and active threat to organizational security, evidenced by its elevated score of 46.3. The IP address is strongly associated with various forms of malicious reconnaissance, brute-force attacks, and attempts to exploit vulnerabilities in public-facing applications. If left unaddressed, connections from this IP could lead to unauthorized access, credential compromise, data exfiltration, or …

Threat ScoreMedium Risk
46
SIGNAL
Signal Score
46%
Confidence
10
Reports
First seenOct 16, 2025
Last seenApr 5, 2026
GeolocationBR
CountryBrazil
LocationSão João del Rei, Minas Gerais
ASNAS28258
OrgVero S.A
Coords-21.2503, -44.2448
Proxy

VirusTotal

Not checked

WHOIS

raw
Socket not responding: [Errno 111] Connection refused

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 8 months ago · Last seen 2 months ago
Appeared in 10 threat reports