IOC Radar
IPMediumSignal 43/100

196.188.161.145

Location
EthiopiaEthiopia
Addis Ababa, Oromiya
ASN
AS24757
Ethiotelecom
First Seen
Mar 28, 2026
Last Seen
Apr 25, 2026
Mar 28
First Seen
77d ago
Apr 25
Last Seen
49d ago
6
Reports
source reports
43%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
43%
Signal Score
43 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

6 techniques

Network Information

CountryETEthiopia
RegionAddis Ababa, Oromiya
ASNAS24757
OrganizationEthiotelecom

Feed Intelligence Summary

6 reports43% confidence
6
Source reports
43%
Confidence score
Category tags
active scanactive scanningbad web botbotnet activitybrute forcebrute-forceddosddos attackdenial of serviceexploitation activityimapimap attackindicatornetworkreconnaissanceresearchedscannersmtpsmtp attackerssht1190t1203t1499.001t1595.001t1595.002t1595.003web application attackweb exploitation

Activity Timeline

1 total obs
Apr 25Apr 25

Threat Activity Heatmap

· Peak: 2026-04-25
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The Internet Protocol (IP) address 196.188.161.145 is identified as a significant threat, evidenced by its elevated score of 43.27 and inclusion in multiple reputable threat intelligence feeds such as AbuseIPDB and AlienVault OTX. This Indicator of Compromise (IOC) is associated with aggressive reconnaissance activities, including active scanning for network vulnerabilities and open services, as well as attempts to exploit public-facing applications and software. The detected behaviors suggest a…

Threat ScoreMedium Risk
43
SIGNAL
Signal Score
43%
Confidence
6
Reports
First seenMar 28, 2026
Last seenApr 25, 2026
GeolocationET
CountryEthiopia
LocationAddis Ababa, Oromiya
ASNAS24757
OrgEthiotelecom
Coords9.0353, 38.6608

VirusTotal

Not checked

WHOIS

raw
inetnum: 196.188.160.0 - 196.188.191.255 netname: To__BRAS_DHCP_OA-10800E descr: To__BRAS_DHCP_OA-10800E country: ET admin-c: ET4-AFRINIC tech-c: ETID1-AFRINIC status: ASSIGNED PA mnt-by: ETC-MNT source: AFRINIC # Filtered parent: 196.188.0.0 - 196.191.255.255 person: Ethio Telecom nic-hdl: ET4-AFRINIC address: Churchill Road address: Addis Ababa 1047 address: Ethiopia phone: tel:+251-93-001-1682 phone: tel:+251-91-110-7398 phone: tel:+251-91-124-3521 phone: tel:+251-91-121-7654 phone: tel:+251-11-531-7220 phone: tel:+251-91-151-0433 mnt-by: GENERATED-GRXPERJUPKL2DTQEXFFNEHRZHJZDFRJ7-MNT source: AFRINIC # Filtered person: Ethio Telecom IS Division address: Ethio telecom address: Legehar Information System division address: Addis Ababa, Ethiopia address: Addis Ababa address: Ethiopia phone: tel:+251-91-125-6562 fax-no: tel:+251-11-552-3296 nic-hdl: ETID1-AFRINIC mnt-by: GENERATED-ZPSFE1E8AGHQZZFKT4YYQSIX58FJ1MZ4-MNT source: AFRINIC # Filtered route: 196.188.160.0/23 descr: Ethiotelecom origin: AS24757 mnt-by: ETC-MNT source: AFRINIC # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 6 threat reports