IPMediumSignal 88/100
194.87.92.109
Location
Russian FederationKorolyov, Moscow
ASN
AS48347
JSC Mediasoft ekspert
First Seen
May 16, 2026
Last Seen
May 25, 2026
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
88%
Signal Score
88 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryRussian Federation
Russian FederationRegionKorolyov, Moscow
ASNAS48347
OrganizationJSC Mediasoft ekspert
Feed Intelligence Summary
9 reports88% confidence
9
Source reports
88%
Confidence score
Category tags
abuseactive scanagent teslaalienvault_ransomwareaptbad reputationbad web botbotnet activitybrowserbrute forcebrute-forcecortexcortex xdrcredential harvestingcredential stuffingcryptocurrency clipperda6ah3ddosddos attackdiscord token thefteurope/asiaexploitation activityexploited hostfiguregoceqc6skgremlingremlin stealerguloaderhackingidentity & access exploitationindicatorinfostealerinjection activityiot securityiot targetedlokibotmalwaremazenetworkobfuscation techniquespacked gremlinpalo altophishingping of deathprotectquasar ratransomwareresearchedrnuarbvf urlrurussiascannersessionsession hijackingsocradarspamsql injectionsshstealert1005t1027t1027.001t1027.002t1032t1041t1056.001t1071.001t1081t1082t1106t1115t1140t1185t1528t1539t1552t1555.003t1560.001t1567t1567.002targeting databasethreat actoruniturlsweb app attackweb spamz5brjsogj789
Activity Timeline
May 25May 25
Threat Activity Heatmap
· Peak: 2026-05-25LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
88
SIGNAL
Signal Score
88%
Confidence
9
Reports
First seenMay 16, 2026
Last seenMay 25, 2026
GeolocationRU
CountryRussian Federation
LocationKorolyov, Moscow
ASNAS48347
OrgJSC Mediasoft ekspert
Coords55.7937, 37.8215
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 194.87.92.0 - 194.87.95.255 netname: BNK-MSK-RU-RUVDS country: RU org: ORG-JME1-RIPE admin-c: RVS268-RIPE tech-c: RVS268-RIPE mnt-domains: MTF-MNT mnt-routes: MTF-MNT status: ASSIGNED PA mnt-by: interlir-mnt created: 2016-12-19T08:22:15Z last-modified: 2024-06-22T08:54:37Z source: RIPE organisation: ORG-JME1-RIPE org-name: JSC Mediasoft ekspert country: RU reg-nr: 1027700560920 org-type: LIR address: 16-ya Parkovaya st., 22A, unit 3, room 1, office 1 address: 105484 address: Moscow address: RUSSIAN FEDERATION phone: +74957717781 fax-no: +74957295734 admin-c: FVV36-RIPE admin-c: PSK26-RIPE admin-c: EE761-RIPE abuse-c: MN3617-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MTW-MNT mnt-ref: AS2118-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: MTW-MNT created: 2008-02-11T11:21:07Z last-modified: 2026-05-13T07:32:10Z source: RIPE # Filtered role: RU VDS Support nic-hdl: RVS268-RIPE address: Tsvetnoy b-r, d. 26, str. 1, kom. 12 address: 127051 Moscow address: Russia abuse-mailbox: [email protected] mnt-by: IP-RIPE created: 2018-10-16T15:38:36Z last-modified: 2021-10-26T09:21:01Z source: RIPE # Filtered route: 194.87.92.0/22 origin: AS48347 mnt-by: MNT-MTW-HOSTING created: 2017-01-12T09:59:46Z last-modified: 2017-01-12T09:59:46Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 25 days ago · Last seen 16 days ago
Appeared in 9 threat reports