IOC Radar
IPMediumSignal 53/100

199.186.197.84

Location
United StatesUnited States
Indianapolis, Indiana
ASN
AS7018
AT&T Services, Inc.
First Seen
Apr 17, 2026
Last Seen
Apr 23, 2026
Apr 17
First Seen
57d ago
Apr 23
Last Seen
51d ago
3
Reports
source reports
53%
Confidence
medium
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
53%
Signal Score
53 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionIndianapolis, Indiana
ASNAS7018
OrganizationAT&T Services, Inc.

Feed Intelligence Summary

3 reports53% confidence
3
Source reports
53%
Confidence score
Category tags
indicatornetworknorth americaresearchedunited states

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address, signifies a potential high-risk threat to our organizational security posture. With a score exceeding 50 and no whitelist status, its presence strongly suggests communication with known malicious infrastructure. Such connections could indicate ongoing command and control activity, initial compromise, or an attempt to exfiltrate sensitive data. If this IOC is observed within our environment, it warrants immediate attention, as it could pave the…

Threat ScoreMedium Risk
53
SIGNAL
Signal Score
53%
Confidence
3
Reports
First seenApr 17, 2026
Last seenApr 23, 2026
GeolocationUS
CountryUnited States
LocationIndianapolis, Indiana
ASNAS7018
OrgAT&T Services, Inc.
Coords37.7510, -97.8220

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
NetRange: 199.186.0.0 - 199.186.255.255 CIDR: 199.186.0.0/16 NetName: NETBLK-ATTICO-BLK1 NetHandle: NET-199-186-0-0-1 Parent: NET199 (NET-199-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: AT&T Services, Inc. (ATTSE-Z) RegDate: 1994-02-22 Updated: 2012-04-02 Ref: https://rdap.arin.net/registry/ip/199.186.0.0 OrgName: AT&T Services, Inc. OrgId: ATTSE-Z Address: Enterprise IP Group Address: c/o Ed Williams Address: 240 N Meridian Street Address: Room 280 City: Indianapolis StateProv: IN PostalCode: 46204 Country: US RegDate: 2009-01-30 Updated: 2024-07-30 Comment: http://www.att.com Ref: https://rdap.arin.net/registry/entity/ATTSE-Z OrgTechHandle: WILLI576-ARIN OrgTechName: Williams, Ed OrgTechPhone: +1-317-265-0000 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/WILLI576-ARIN OrgRoutingHandle: ROUTI59-ARIN OrgRoutingName: Routing POC OrgRoutingPhone: +1-999-999-9999 OrgRoutingEmail: [email protected] OrgRoutingRef: https://rdap.arin.net/registry/entity/ROUTI59-ARIN OrgAbuseHandle: ABUSE7-ARIN OrgAbuseName: abuse OrgAbusePhone: +1-919-319-8167 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE7-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 3 threat reports