IOC Radar
IPMediumSignal 100/100

193.177.182.53

Location
FranceFrance
Vélizy-Villacoublay, Île-de-France
ASN
AS49434
FBW NETWORKS
First Seen
Feb 1, 2025
Last Seen
Oct 20, 2025
Feb 1
First Seen
506d ago
Oct 20
Last Seen
246d ago
17
Reports
source reports
99%
Confidence
medium
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

63 techniques

Network Information

CountryFRFrance
RegionVélizy-Villacoublay, Île-de-France
ASNAS49434
OrganizationFBW NETWORKS

Feed Intelligence Summary

17 reports99% confidence
17
Source reports
99%
Confidence score
Category tags
abuseaccess controlaccount compromiseaccount securityactive scanningadministrative accessanomalous network connectionsasiaattackaustraliaauthentication abuseauthentication attackbad web botblacklist ipblock listblock.txtbotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute force attemptsc2c2 servercall hijackingchina mobilecloud infrastructurecloud infrastructure attackcloud servicescolumnscommand and controlcommunication protocolcompany limitedcompromised hostcompromised hostscowrie honeypotcowrie ssh attackscredential accesscredential harvestingcredential stuffingdaily_sourcesdata exfiltrationdata exfiltration attemptdata theftdatabase attacksddosddos attackddos attacksdecoy systemdenial of servicedenial-of-service attemptdionaea honeypotdionaea malware samplesdistributed attackseuropeexploit attemptsexploitation attemptsexploited hostfailed login attemptsfattfrfranceftpftp brute forceftp brute-forcehackinghk abusehandlerhoneytrap exploit attemptshoneytrap honeypothong konghttp request anomalieshttp scannerhurricane usindicatorinfected systeminformation gatheringinternet of thingsintrusion attemptintrusion detectioniociot botnetiot/ics attackmailoney honeypotmalicious activitymalicious file transfermalicious scanmalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemalware distributionmalware propagationmirai botnetnetworknetwork activitynetwork attacksnetwork intrusionnetwork intrusion attemptsnetwork monitoringnetwork probingnetwork scannetwork scanningnetwork securitynetwork traffic analysisoceaniaoperating systemoperating system securityp0fp0f network fingerprintingpassword attackpassword attackspgp signphishing attackphishing trappolandpoland infrastructurepossible botnet activitypossible malware distributionpotential vulnerability scanprivilege escalationprocess injectionprotocol exploitationproxy protocolreconnaissancereconnaissance activityremote accessremote servicesresearchedresource hijackingscanscannerscannersscanning activitysecurity operationssecurity policysensor-taggedsentrypeer botnetsip protocolsmtpsmtp brute forcesocial engineeringspamssh attackssh monitoringsuricata alertst1005t1016t1018t1021t1021.001t1021.002t1021.004t1021.006t1040t1046t1047t1048t1053t1055t1056t1059t1059.001t1059.004t1065t1068t1069.001t1071t1071.001t1071.004t1076t1078t1078.004t1083t1087t1088t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1195t1203t1486t1496t1497t1499.001t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1572t1573t1583t1583.001t1589t1592t1595t1595.001t1595.002t1595.003tannertcp protocoltelecommunicationstelephony fraudtelnet threatthreat actorthreat actor activitythreat detectionthreat intelligencethreat preventiontimeouttop10.txttopips.txttpotunauthorized accessus nonevoipvoip attackvoip securityvultr hostingwarsawweb application attackweb application attacksweb exploitationweb shell detectionweb traffic

Activity Timeline

1 total obs
Oct 20Oct 20

Threat Activity Heatmap

· Peak: 2025-10-20
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
17
Reports
First seenFeb 1, 2025
Last seenOct 20, 2025
GeolocationFR
CountryFrance
LocationVélizy-Villacoublay, Île-de-France
ASNAS49434
OrgFBW NETWORKS
Coords48.7837, 2.2081

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=p0f, suricata; threshold?1; private IPs excluded.
raw
inetnum: 193.177.182.0 - 193.177.182.255 netname: FR-FBW-NETWORKS-20191118 country: FR org: ORG-FNS23-RIPE admin-c: GML75-RIPE tech-c: GML75-RIPE status: ALLOCATED PA mnt-by: lir-fr-fbw-networks-1-MNT mnt-by: RIPE-NCC-HM-MNT created: 2023-12-18T08:00:22Z last-modified: 2023-12-18T08:00:22Z source: RIPE organisation: ORG-FNS23-RIPE org-name: FBW NETWORKS SAS country: FR org-type: LIR address: 16 rue Grange Dame Rose address: 78140 address: V�lizy Villacoublay address: FRANCE phone: +33184207217 admin-c: GML75-RIPE tech-c: GML75-RIPE abuse-c: AR65110-RIPE mnt-ref: lir-fr-fbw-networks-1-MNT mnt-ref: RELCOMGROUP-EXT-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: lir-fr-fbw-networks-1-MNT created: 2021-09-16T10:31:33Z last-modified: 2022-06-01T14:17:54Z source: RIPE # Filtered role: Gautier MARSOT LEMAIRE address: FRANCE address: V�lizy Villacoublay address: 78140 address: 16 rue Grange Dame Rose phone: +33184207217 nic-hdl: GML75-RIPE mnt-by: lir-fr-fbw-networks-1-MNT created: 2021-09-16T10:31:32Z last-modified: 2021-09-16T10:31:33Z source: RIPE # Filtered route: 193.177.182.0/24 origin: AS34534 mnt-by: mnt-fr-rackwayfm-1 created: 2023-03-29T13:09:02Z last-modified: 2023-03-29T13:09:02Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 8 months ago
Appeared in 17 threat reports