IOC Radar
IPMediumSignal 80/100

193.95.31.162

Location
TunisiaTunisia
Tunis, Tunis Governorate
ASN
AS37717
ATI - Agence Tunisienne Internet
First Seen
Apr 15, 2026
Last Seen
Apr 23, 2026
Apr 15
First Seen
60d ago
Apr 23
Last Seen
53d ago
9
Reports
source reports
80%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
80%
Signal Score
80 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryTNTunisia
RegionTunis, Tunis Governorate
ASNAS37717
OrganizationATI - Agence Tunisienne Internet

Feed Intelligence Summary

9 reports80% confidence
9
Source reports
80%
Confidence score
Category tags
active scanafricaaptbad reputationbrute forcebrute-forcebruteforceexploitation activityindicatormalicious ipnetworkresearchedscanscannersshssh attacktcpthreat actortor nodetunisia

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
80
SIGNAL
Signal Score
80%
Confidence
9
Reports
First seenApr 15, 2026
Last seenApr 23, 2026
GeolocationTN
CountryTunisia
LocationTunis, Tunis Governorate
ASNAS37717
OrgATI - Agence Tunisienne Internet
Coords36.8244, 10.1763

VirusTotal

Not checked

WHOIS

description
Bruteforce hitting the server at TCP port 22 SSH. Same IP should not appear more than once in 24 hours in this list.
raw
inetnum: 193.95.30.0 - 193.95.31.255 netname: CCK-1 descr: Centre de Calcul el-Khawarizmi - CCK country: TN org: ORG-ATIA2-AFRINIC admin-c: AL21-AFRINIC admin-c: TK12-AFRINIC tech-c: AL21-AFRINIC tech-c: TK12-AFRINIC status: ASSIGNED PA mnt-by: ATI-MNT source: AFRINIC # Filtered parent: 193.95.0.0 - 193.95.127.255 organisation: ORG-ATIA2-AFRINIC org-name: ATI - Agence Tunisienne Internet org-type: LIR country: TN address: 13, rue Jughurta, Belvedere address: Tunis 1002 phone: tel:+216-71-846-100 phone: tel:+216-70-147-700 phone: tel:+216-71-843-843 phone: tel:+216-71-843-843 admin-c: AH74-AFRINIC tech-c: AA239-AFRINIC tech-c: SM95-AFRINIC tech-c: AH74-AFRINIC mnt-ref: AFRINIC-HM-MNT mnt-ref: ATI-MNT mnt-by: AFRINIC-HM-MNT remarks: data has been transferred from RIPE Whois Database 20050221 source: AFRINIC # Filtered person: Ali LABYEDH address: Campus universitaire de la Manouba address: 2010 Manouba,TUNISIE address: TN phone: tel:+216-71-602-940 nic-hdl: AL21-AFRINIC mnt-by: GENERATED-O9K5O5QURJBOFRDDKF4HLQQ4D450RQJN-MNT source: AFRINIC # Filtered person: Tahar KHALFALLI address: Campus universitaire de la Manouba address: 2010 Manouba,TUNISIE address: TN phone: tel:+216-71-602-940 nic-hdl: TK12-AFRINIC mnt-by: GENERATED-FGQTJGNBCKSONJ2IJT16XVBKYQUHXUCP-MNT source: AFRINIC # Filtered route: 193.95.30.0/23 descr: CCK origin: AS37717 mnt-by: ATI-MNT source: AFRINIC # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 9 threat reports