IPMediumSignal 27/100
193.193.229.230
Location
KazakhstanAlmaty, AST
ASN
AS8393
"ASTEL" OJSC
First Seen
Sep 3, 2024
Last Seen
Apr 7, 2026
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
27%
Signal Score
27 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryKazakhstan
KazakhstanRegionAlmaty, AST
ASNAS8393
Organization"ASTEL" OJSC
Feed Intelligence Summary
9 reports27% confidence
9
Source reports
27%
Confidence score
Category tags
active scanactive scanningantispamasiaattackbotnetbotnet activitybrute forcecommand and controlcommunication protocolcompromised credentialscowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata exfiltration attemptsdata store exposuredatabase securitydecoy systemdionaea honeypotdionaea malware analysisdistributed attackselasticpot honeypotelasticsearch monitoringexploitation activityexploitation attemptexploitation attemptsheralding attack patternidentity & access exploitationindicatorinjection activityiot securitykazakhstanlateral movementlog4jmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware deployment attemptsnetworknetwork scanningnetwork securityphishingphishing attackprocess injectionpython script activityreconnaissanceremote accessresearchedresource hijackingscannerscanning activitysentrypeer botnetsftp access attemptsftp attacksip brute forcesocial engineeringspamssh attackssh monitoringt1021t1040t1041t1055t1059t1071.001t1078t1110t1110.002t1133t1190t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1583t1595t1595.001t1595.002t1595.003tannertargeting databasetelecommunicationsthreat actorthreat intelligencetor nodevoipvoip attack
Activity Timeline
Apr 7Apr 7
Threat Activity Heatmap
· Peak: 2026-04-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC) represents a significant potential threat to organizational security, warranting immediate attention and thorough investigation. With a score of 27.029, this IPv4 address has been associated with a range of malicious activities, including active scanning, brute-force attempts, spear-phishing, and potential data exfiltration over command and control channels. Its presence in network logs could signify ongoing reconnaissance efforts targeting vulnerabilities, att…
Threat ScoreLow Risk
27
SIGNAL
Signal Score
27%
Confidence
9
Reports
First seenSep 3, 2024
Last seenApr 7, 2026
GeolocationKZ
CountryKazakhstan
LocationAlmaty, AST
ASNAS8393
Org"ASTEL" OJSC
Coords51.1811, 71.4278
VirusTotal
Not checked
WHOIS
- description
- 2025-04-30T07:46:30.304Z Honeypot : Heralding : Source: 193.193.229.230 : Username/Password: ADmIn1/1234qwer Port: 1080 Message: 2025-04-30 07:46:30.304879,6cdfa09f-816a-4868-953b-35d246488595,dcc08d8b-d3ad-4ebe-a456-e01d6d88b267,193.193.229.230,46056,99.18.26.18,1080,socks5,ADmIn1,1234qwer,
- raw
- inetnum: 193.193.229.192 - 193.193.229.255 netname: GVN-NET descr: Customer of ASTEL in Astana - Goverment country: KZ admin-c: KS1933-RIPE tech-c: KS1933-RIPE remarks: INFRA-AW status: ASSIGNED PA mnt-by: ASTEL-MNT created: 2007-07-31T04:28:07Z last-modified: 2023-07-27T10:04:02Z source: RIPE # Filtered person: Daniyar Shamshiyev mnt-by: ASTEL-MNT address: ASTEL, address: 67 Mametova str, address: Almaty, 480004 address: Kazakhstan phone: +7 727 237 9001 fax-no: +7 727 237 9001 nic-hdl: KS1933-RIPE created: 2004-04-05T09:33:00Z last-modified: 2020-06-10T09:42:20Z source: RIPE # Filtered route: 193.193.229.0/24 descr: "ASTEL" OJSC origin: AS8393 mnt-by: ASTEL-MNT created: 2003-12-08T05:56:28Z last-modified: 2003-12-08T05:56:28Z source: RIPE
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 9 threat reports