IOC Radar
IPLowSignal 95/100

193.25.218.80

Location
United StatesUnited States
Osmangazi, VA
ASN
AS60647
SuperOnline
First Seen
Feb 21, 2025
Last Seen
Aug 16, 2025
Feb 21
First Seen
477d ago
Aug 16
Last Seen
301d ago
14
Reports
source reports
95%
Confidence
low
0/91
VirusTotal
detections
Found in 14 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
95%
Signal Score
95 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

25 techniques

Network Information

CountryUSUnited States
RegionOsmangazi, VA
ASNAS60647
OrganizationSuperOnline

Feed Intelligence Summary

14 reports95% confidence
14
Source reports
95%
Confidence score
Category tags
abuseactive scanningattackaustraliaauthentication attacksbotnetbrute forcebrute force attackbrute force attemptcommand and controlcowrie honeypotcredential accesscredential stuffingctadata exfiltrationddos attemptdecoy systemdistributed attackseuropeeurope/asiafail2ban triggeredftp brute forceindicatorlogin attackmalicious activitymalicious softwaremalwarenetworknetwork reconnaissancenetwork security monitoringnetwork service scanningnorth americaoceaniapassword attacksprocess injectionreconnaissanceremote accessresearchedscannerssh attackssh monitoringt1021t1021.004t1040t1055t1059t1071t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.002t1499.003t1565t1588.004t1595t1595.001t1595.002t1595.003threat actorthreat intelligencetrturkeyunited kingdomunited states

Activity Timeline

1 total obs
Aug 16Aug 16

Threat Activity Heatmap

· Peak: 2025-08-16
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
95
SIGNAL
Signal Score
95%
Confidence
14
Reports
First seenFeb 21, 2025
Last seenAug 16, 2025
GeolocationUS
CountryUnited States
LocationOsmangazi, VA
ASNAS60647
OrgSuperOnline
Coords39.0814, -77.6443

VirusTotal

0/ 91vendors flagged
0% detection rateJun 8, 2026

WHOIS

description
Banned by Fail2Ban [sshd]
raw
inetnum: 193.25.218.0 - 193.25.218.127 netname: SuperOnline descr: Turkcell Iletisim Hizmetleri A.S remarks: Turkcell Iletisim Hizmetleri A.S country: TR org: ORG-TA1613-RIPE admin-c: MT20720-RIPE tech-c: MT20720-RIPE status: ASSIGNED PA abuse-c: ACRO45564-RIPE mnt-by: interlir-mnt created: 2024-07-05T17:40:49Z last-modified: 2025-03-02T17:59:33Z source: RIPE organisation: ORG-TA1613-RIPE admin-c: AR67477-RIPE language: TR geoloc: 41.05570 28.97720 org: ORG-TA1613-RIPE descr: Turkcell Iletisim Hizmetleri A.S. org-name: Turkcell Iletisim Hizmetleri A.S. org-type: OTHER address: Turkcell Kartal Plaza Topselvi Mahallesi Dipcik Sokak No:31 Kartal ISTANBUL abuse-c: TAH47-RIPE mnt-ref: netutils-mnt mnt-ref: interlir-mnt mnt-ref: lir-lt-elisteka24-1-MNT mnt-ref: tr-turkcell mnt-ref: MNT-TELLCOM mnt-ref: lir-ir-dadehbr-1-MNT mnt-ref: turkcell-MNT mnt-by: MNT-TURKNET-DSL-MNT mnt-by: turkcell-MNT created: 2022-01-06T12:07:30Z last-modified: 2025-03-17T08:42:47Z source: RIPE # Filtered person: MERT TURKOGLU address: Fahri koruturk Mah. sehitler Cad. 42/9 Mamak/Ankara phone: +908508409028 nic-hdl: MT20720-RIPE mnt-by: DATAHOSTR-MNT created: 2023-09-19T10:36:13Z last-modified: 2024-01-17T08:45:28Z source: RIPE route: 193.25.218.0/24 origin: AS60647 mnt-by: interlir-mnt created: 2024-11-18T15:21:23Z last-modified: 2024-11-18T15:21:23Z source: RIPE
references
https://redpiranha.net, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 10 months ago
Appeared in 14 threat reports