IOC Radar
IPMediumSignal 34/100

194.233.90.125

Location
SingaporeSingapore
Singapore, Singapore
ASN
AS141995
Contabo Asia Private Limited
First Seen
Jan 25, 2025
Last Seen
Apr 6, 2026
Jan 25
First Seen
505d ago
Apr 6
Last Seen
69d ago
18
Reports
source reports
34%
Confidence
medium
Found in 18 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

32 techniques

Network Information

CountrySGSingapore
RegionSingapore, Singapore
ASNAS141995
OrganizationContabo Asia Private Limited

Feed Intelligence Summary

18 reports34% confidence
18
Source reports
34%
Confidence score
Category tags
abuseaccessactive scanactive scanningadbhoney activityadbhoney honeypotafricaantispamargentinaasiaattackbad reputationbankingbotnetbotnet activitybrazilbrute forcebrute force attackbulgariacisco devicecommand and controlcommunication protocolcowriecowrie activitycowrie attackcowrie honeypotcredential accesscredential harvestingcredential stuffingcredit card servicesctadata exfiltrationdata store exposureddosdecoy systemdenial of servicedevice managementdionaeadionaea activitydionaea attackdionaea honeypotdistributed attacksdns attackemailenterprise networkingeuropeexploitation activityfinancefinancial servicesfinancial technologyftp brute forcegermanygithubgroupshoneytrap activityhoneytrap honeypotidentity & access exploitationindexindicatorindonesiainformation technologyinjection activitylamplamp attacklamp stack attacklog4jmailoney activitymailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemexicomoroccomozinetworknetwork infrastructurenetwork probingnetwork securitynorth americaopen_dns_resolvers-benignpassword attackspayment processingphishingphishing attackphishing trapprocess injectionpythonransomwarereconnaissanceresearchedresource hijackingscannerscanning activityscriptscripting attackssentrypeer activitysentrypeer botnetsftpsftp activitysftp attacksgsingaporesipsip scanningslugsocial engineeringsouth americaspamsshssh attackssh monitoringsurface webt1040t1041t1055t1059t1059.004t1059.007t1071.001t1078t1078.001t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannertanner attacktelecommunicationsthreat actorthreat detectionthreat intelligencetor nodetpotceukraineurls httpverified-benignvoipvoip attackwealth managementweb application attackweb attackweb exploitationweb scanner

Activity Timeline

1 total obs
Apr 6Apr 6

Threat Activity Heatmap

· Peak: 2026-04-06
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
18
Reports
First seenJan 25, 2025
Last seenApr 6, 2026
GeolocationSG
CountrySingapore
LocationSingapore, Singapore
ASNAS141995
OrgContabo Asia Private Limited
Coords1.3521, 103.8200

VirusTotal

Not checked

WHOIS

description
2025-02-05T03:34:24.055Z Honeypot : Tanner : Source: 194.233.90.125 : Port: 80 Post Data: {'response': {'message': {'sess_uuid': 'ae4cb5f8-b5d7-4eaf-a6b3-25303e77f5da', 'detection': {'type': 1, 'version': '0.6.0', 'order': 0, 'name': 'unknown'}}}, 'version': '0.6.0'}
raw
inetnum: 194.233.88.0 - 194.233.91.255 netname: CONTABO-ASIA-20210409-07 descr: Contabo Asia Private Limited country: SG admin-c: CAPL9-AP tech-c: CAPL9-AP abuse-c: AC2420-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-CAPL-SG mnt-irt: IRT-CAPL-SG last-modified: 2021-04-12T17:35:58Z source: APNIC irt: IRT-CAPL-SG address: 8 Robinson Road, # 13-00 ASO Building, Singapore Central Area 048544 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CAPL9-AP tech-c: CAPL9-AP auth: # Filtered remarks: [email protected] is invalid mnt-by: MAINT-CAPL-SG last-modified: 2024-08-28T13:11:15Z source: APNIC role: ABUSE CAPLSG country: ZZ address: 8 Robinson Road, # 13-00 ASO Building, Singapore Central Area 048544 phone: +000000000 e-mail: [email protected] admin-c: CAPL9-AP tech-c: CAPL9-AP nic-hdl: AC2420-AP remarks: Generated from irt object IRT-CAPL-SG remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2024-08-28T13:14:16Z source: APNIC role: Contabo Asia Private Limited Administrator address: #25-06 Anson Road, International Plaza, Singapore, 079903, Singapore country: SG phone: +49-8921268372 e-mail: [email protected] admin-c: CAPL9-AP tech-c: CAPL9-AP nic-hdl: CAPL9-AP mnt-by: MAINT-CAPL-SG last-modified: 2024-01-25T09:51:40Z source: APNIC route: 194.233.88.0/22 origin: AS141995 descr: Contabo Asia Private Limited 8 Robinson Road, #13-00 ASO Building mnt-by: MAINT-CAPL-SG last-modified: 2021-04-12T17:40:19Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 18 threat reports