IOC Radar
IPMediumSignal 52/100

194.163.171.231

Location
GermanyGermany
Lauterbourg, NW
ASN
AS51167
Contabo GmbH
First Seen
Dec 21, 2024
Last Seen
Sep 19, 2025
Dec 21
First Seen
551d ago
Sep 19
Last Seen
279d ago
13
Reports
source reports
52%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
52%
Signal Score
52 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

24 techniques

Network Information

CountryDEGermany
RegionLauterbourg, NW
ASNAS51167
OrganizationContabo GmbH

Feed Intelligence Summary

13 reports52% confidence
13
Source reports
52%
Confidence score
Category tags
abuseaccess controlactive scanningattackaustraliaauthenticationauthentication attackauto-generated securitybotnetbrute forcebrute force attackbrute force attemptbrute-forccommand and controlcowrie honeypotcredential accesscredential stuffingctadata exfiltrationdecoy systemdistributed attackseuropegermanyindicatorinfomalicious activitymalicious softwaremalwarenetworknetwork intrusionnetwork securitynoticeoceaniapassword attackpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedscannersecurity operationssecurity policyssh attackssh monitoringt1021.004t1055t1071.001t1078t1078.002t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1486t1496t1499.002t1499.003t1555t1555.003t1565t1588.004t1589t1589.002t1595.001t1595.002t1595.003threat actorthreat intelligencethreat prevention

Activity Timeline

1 total obs
Sep 19Sep 19

Threat Activity Heatmap

· Peak: 2025-09-19
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
52
SIGNAL
Signal Score
52%
Confidence
13
Reports
First seenDec 21, 2024
Last seenSep 19, 2025
GeolocationDE
CountryGermany
LocationLauterbourg, NW
ASNAS51167
OrgContabo GmbH
Coords51.1878, 6.8607

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
inetnum: 194.163.160.0 - 194.163.191.255 netname: CONTABO country: DE admin-c: MH7476-RIPE tech-c: MH7476-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO created: 2021-04-27T08:52:50Z last-modified: 2021-04-27T08:52:50Z source: RIPE person: Johannes Selg address: Contabo GmbH address: Aschauer Str. 32a address: 81549 Muenchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO mnt-by: MNT-GIGA-HOSTING created: 2010-01-04T10:41:37Z last-modified: 2024-04-15T11:05:18Z source: RIPE route: 194.163.128.0/18 origin: AS51167 mnt-by: MNT-CONTABO created: 2021-03-12T09:26:37Z last-modified: 2021-03-12T09:26:37Z source: RIPE
references
https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 9 months ago
Appeared in 13 threat reports