IOC Radar
IPMediumSignal 48/100

2.54.3.227

Location
IsraelIsrael
Tel Aviv, Tel Aviv
ASN
AS12400
Partner Communications
First Seen
Apr 15, 2026
Last Seen
Apr 24, 2026
Apr 15
First Seen
60d ago
Apr 24
Last Seen
52d ago
6
Reports
source reports
48%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
48%
Signal Score
48 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryILIsrael
RegionTel Aviv, Tel Aviv
ASNAS12400
OrganizationPartner Communications

Feed Intelligence Summary

6 reports48% confidence
6
Source reports
48%
Confidence score
Category tags
aptftpindicatornetworkresearchedthreat actortor node

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address, signals a significant and immediate threat to our organizational security posture. With a high threat score of 47.53, this address is not whitelisted and has been identified across multiple reputable threat intelligence feeds as associated with potential attacker infrastructure and botnet operations. Its presence within our environment could indicate active compromise, potentially facilitating command and control (C2) communications, data exfi…

Threat ScoreMedium Risk
48
SIGNAL
Signal Score
48%
Confidence
6
Reports
First seenApr 15, 2026
Last seenApr 24, 2026
GeolocationIL
CountryIsrael
LocationTel Aviv, Tel Aviv
ASNAS12400
OrgPartner Communications
Coords31.5000, 34.7500

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 2.54.0.0 - 2.54.255.255 netname: PARTNERCOM-CELLULAR-NETS descr: Cellucar subscribers for GGSN RH & YV country: IL admin-c: AIP63-RIPE tech-c: AIP63-RIPE status: ASSIGNED PA mnt-by: partnercom-mnt created: 2010-08-15T11:42:16Z last-modified: 2019-02-05T10:38:43Z source: RIPE person: Abuse ISP Partner remarks: Network Abuse Investigation Department address: 8 Amal Street Rosh Ha'ayin ,Israel 48103 phone: +972 547814505 address: Partner Communications Ltd. nic-hdl: AIP63-RIPE mnt-by: AS12400 created: 2019-02-05T06:38:13Z last-modified: 2021-12-05T16:12:04Z source: RIPE # Filtered route: 2.54.0.0/16 descr: Partner Communications Block origin: AS12400 mnt-by: AS12400-MNT created: 2012-05-07T08:59:23Z last-modified: 2012-05-07T08:59:23Z source: RIPE
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 6 threat reports