IOC Radar
IPMediumSignal 78/100

195.164.49.68

Location
PolandPoland
Warsaw, Mazovia
ASN
AS8308
NASK
First Seen
Nov 2, 2024
Last Seen
May 1, 2026
Nov 2
First Seen
593d ago
May 1
Last Seen
49d ago
16
Reports
source reports
78%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

11 techniques

Network Information

CountryPLPoland
RegionWarsaw, Mazovia
ASNAS8308
OrganizationNASK

Feed Intelligence Summary

16 reports78% confidence
16
Source reports
78%
Confidence score
Category tags
abuseactive scanactive scanningapacheapache attackeraptbad reputationbrute forcebrute force attackcertcredential accesscredential stuffingddosdenial of serviceeuropeexploitation activityexploited hostftpftp brute-forcehackingidentity & access exploitationindicatorkill-chain exploitationkill-chain reconnaissancemedium-risknask_pl-benignnetworkpassword attacksplpolandreconnaissanceresearchedscannerspamssh attackt1046t1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1595.001t1595.002t1595.003threat actortor nodeunited kingdomverified-benignwazuhweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
16
Reports
First seenNov 2, 2024
Last seenMay 1, 2026
GeolocationPL
CountryPoland
LocationWarsaw, Mazovia
ASNAS8308
OrgNASK
Coords52.2512, 20.9759

VirusTotal

Not checked

WHOIS

description
TGI HUNT gitrepo HTTP Probe
raw
inetnum: 195.164.0.0 - 195.164.255.255 netname: PL-NASK-960626 country: PL org: ORG-NRaA1-RIPE admin-c: NASK1-RIPE tech-c: NASK1-RIPE status: ALLOCATED PA mnt-by: RIPE-NCC-HM-MNT mnt-by: NASK-MNT mnt-lower: NASK-MNT mnt-routes: NASK-MNT mnt-irt: IRT-CERT-POLSKA created: 2002-06-21T13:06:37Z last-modified: 2016-07-13T08:54:36Z source: RIPE # Filtered organisation: ORG-NRaA1-RIPE org-name: NAUKOWA I AKADEMICKA SIEC KOMPUTEROWA - PANSTWOWY INSTYTUT BADAWCZY country: PL org-type: LIR address: ul. Kolska 12 address: 01-045 address: Warszawa address: POLAND phone: +48 22 3808204 phone: +48 22 3808200 fax-no: +48 22 3808201 admin-c: NASK1-RIPE admin-c: JK6662-RIPE admin-c: TM3779-RIPE abuse-c: NASK1-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: NASK-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: NASK-MNT created: 2004-04-17T11:47:37Z last-modified: 2022-12-05T13:04:50Z source: RIPE # Filtered role: NASK LIR org: ORG-NRaA1-RIPE address: ul. Kolska 12 address: 01-045 Warszawa address: Poland phone: +48 22 380 82 00 fax-no: +48 22 380 82 01 abuse-mailbox: [email protected] remarks: Network problems: [email protected] remarks: Registry contact: [email protected] remarks: Abuse and spam notification: [email protected] remarks: remarks: Please send spam and abuse notifications to [email protected] only - remarks: notifications sent to other mailboxes will be left without action. admin-c: TM3779-RIPE tech-c: JK6662-RIPE tech-c: TM3779-RIPE nic-hdl: NASK1-RIPE mnt-by: NASK-MNT created: 2002-06-25T14:34:39Z last-modified: 2016-05-09T11:58:25Z source: RIPE # Filtered route: 195.164.0.0/16 descr: NASK (PL) descr: Provider Local Registry origin: AS8308 mnt-by: AS8308-MNT created: 2003-02-21T12:10:57Z last-modified: 2003-02-21T12:10:57Z source: RIPE # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 16 threat reports