IOC Radar
IPMediumSignal 50/100

195.24.207.184

Location
CameroonCameroon
Yaoundé, Centre
ASN
AS15964
Camtel
First Seen
Aug 26, 2020
Last Seen
Jun 19, 2026
Aug 26
First Seen
2130d ago
Jun 19
Last Seen
8d ago
23
Reports
source reports
50%
Confidence
medium
Found in 23 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

53 techniques

Network Information

CountryCMCameroon
RegionYaoundé, Centre
ASNAS15964
OrganizationCamtel

Feed Intelligence Summary

23 reports50% confidence
23
Source reports
50%
Confidence score
Category tags
abuseabuseipdbaccess controlactive scanactive scanningagentalertaptattacker-ipaustraliaauto-generated securitybad reputationbad web botbotnetbotnet activitybotnet trafficbrute forcebrute force attackbrute force attacksbrute force attemptsbrute-forcec&cc2camerooncins activecmcommand & controlcommand and controlcommand injectioncommunication protocolcompromised hostcompromised systemcowriecowrie honeypotcowrie ssh attackscredential accesscredential attackcredential harvestingcredential stuffingctacyber securitydata encryptiondata exfiltrationdata store exposuredatabase attacksdatabase securityddosddos attackddos preparationdecoy systemdefensedenial of servicedionaeadionaea honeypotdionaea malware samplesdistributed attacksdnsdns attackdshield blockencryptionet dropexploitexploit attemptsexploitationexploitation activityexploitation attemptexploited hostfailed login attemptsfattfilefin port scanfirewall detectionftpftp brute forcehackinghoneytrap exploit attemptshoneytrap honeypothttp brute forcehttp scannericmpidentity & access exploitationimpactinbound scanindicatorinfected systeminfrastructure acquisitionreconnaissanceinitial accessinjection activityinjection attacksinternet-facingioclateral movementlisted sourcemailoney honeypotmalicious activitymalicious file transfermalicious softwaremalwaremalware behaviourmalware capturemalware distributionmalware filtermalware infectionmalware propagationmanualmassive scanningnetworknetwork discoverynetwork intrusionnetwork intrusion attemptsnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork traffic analysisnextraynull port scanoceaniaopenctioperating system detectionp0fp0f network fingerprintingpassword attacksphishingphishing attackphishing trappingpoor reputationportprocess injectionprotoprotocol exploitationransomwarereconnaissancereconnaissance activityremote accessremote servicesresearchedresource hijackingscannerscanning activitysecurity policysensor-taggedsentrypeer botnetservice scanservice version detectionsmtpsmtp brute forcesocial engineeringspamsql injectionsshssh attackssh monitoringsuricata alertssuspicious-udpsweep scansyn port scansyn scant1003t1005t1016t1018t1021t1021.001t1021.002t1040t1046t1047t1053t1055t1059t1059.003t1071t1071.001t1076t1077t1078t1083t1087t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1195t1199t1203t1486t1496t1497t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1572t1573t1583t1587.001t1590.001t1592t1595t1595.001t1595.002t1595.003tannertargeting databasetcp scantelecommunicationstelnettelnet threatthreat actorthreat detectionthreat intelligencethreat intelligence feedthreat preventiontor nodetpotudp port scanudp scanunauthorized accessvncvnc protocolvoidtrapvoipvoip attackvulnerability scanweb app attackweb application attackweb application attacksweb exploitationweb shell detectionweb spamweb trafficxmas port scan

Activity Timeline

1 total obs
Jun 19Jun 19

Threat Activity Heatmap

· Peak: 2026-06-19
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
23
Reports
First seenAug 26, 2020
Last seenJun 19, 2026
GeolocationCM
CountryCameroon
LocationYaoundé, Centre
ASNAS15964
OrgCamtel
Coords6.0000, 12.0000

VirusTotal

Not checked

WHOIS

description
Observed making inbound scans on 2026-05-24 08:13:03
raw
inetnum: 195.24.207.0 - 195.24.207.255 netname: CAMTEL descr: LL, ADSL POOL country: CM admin-c: JN1000-AFRINIC tech-c: JN1000-AFRINIC status: ASSIGNED PA mnt-by: CAMTEL-MNT source: AFRINIC # Filtered parent: 195.24.192.0 - 195.24.223.255 person: Jules NGAMBA nic-hdl: JN1000-AFRINIC address: CAMTEL address: Yaounde address: Cameroon phone: tel:+237-2-22-23-40-65 phone: tel:+237-2-22-22-44-16 remarks: data has been transferred from RIPE Whois Database 20050221 mnt-by: CAMTEL-MNT source: AFRINIC # Filtered route: 195.24.204.0/22 descr: CAMTEL origin: AS15964 mnt-by: CAMTEL-MNT source: AFRINIC # Filtered
references
MISP Event ID 3939, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/borestad/blocklist-abuseipdb/blob/main/abuseipdb-s100-3d.ipv4

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 8 days ago
Appeared in 23 threat reports