IPMediumSignal 44/100
193.187.148.155
Location
GermanyFrankfurt am Main, Hesse
ASN
AS9009
M247 Europe SRL
First Seen
Nov 13, 2025
Last Seen
Dec 8, 2025
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
44%
Signal Score
44 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryGermany
GermanyRegionFrankfurt am Main, Hesse
ASNAS9009
OrganizationM247 Europe SRL
IP Category
⊕
VPN
VPN exit node
Feed Intelligence Summary
15 reports44% confidence
15
Source reports
44%
Confidence score
Category tags
abuseaccess attemptsaccess controlactive scanningapacheapache attackerattackaustraliaauthentication attackautomated threatbad web botblog spambotnetbrute forcebrute force attackbrute force attacksbrute force attemptcommunication protocolcompromised credentialscowrie honeypotcowrie ssh honeypotcredential accesscredential brute-forcecredential stuffingdata encryptiondata exfiltrationdatabase securityddosddos attackdecoy systemdefault credential abusedenial of servicedionaea honeypoteuropeexploit attemptsexploitation attemptsexploited hostfattftpftp brute forcegermanyhackinghoneytrap honeypothttp scannerhttp/sindicatorinjection attacksiot device exploitationiot targetedipv4it infrastructurelamplamp server attacklateral movementlinux serverlinux systemsmailoney honeypotmalicious activitymalicious sftp activitymalicious ssh activitymalwaremalware behaviourmalware capturemalware distributionmodbusmssqlnetworknetwork attacksnetwork intrusion attemptsnetwork protocolnetwork scanningnetwork securitynetwork service scanningoceaniap0fpassword attackpassword attacksphishing attackphishing trapprotocol exploitationreconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanning activityscripting attackssecurity policysensor-taggedsentrypeer botnetserver exploitationsftp attacksoftware developmentsql injectionssh attackssh monitoringt1021t1021.001t1021.002t1021.004t1040t1041t1059t1059.003t1059.007t1071.001t1076t1077t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1505.002t1563t1588.004t1595t1595.001t1595.002t1595.003tannertcp protocoltelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontpotunauthorized access attemptunauthorized loginunited kingdomvnc protocolvoipvoip attackvpnweb application attackweb application attacksweb attackweb exploitationweb serversweb spamweb traffic
Activity Timeline
Dec 8Dec 8
Threat Activity Heatmap
· Peak: 2025-12-08LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
44
SIGNAL
Signal Score
44%
Confidence
15
Reports
First seenNov 13, 2025
Last seenDec 8, 2025
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS9009
OrgM247 Europe SRL
Coords50.1013, 8.6264
VPN
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 7 months ago · Last seen 6 months ago
Appeared in 15 threat reports