IOC Radar
IPMediumSignal 86/100

2.55.87.198

Location
IsraelIsrael
Tel Aviv, Hefa
ASN
AS12400
Partner Communications
First Seen
Mar 12, 2025
Last Seen
Feb 20, 2026
Mar 12
First Seen
458d ago
Feb 20
Last Seen
113d ago
14
Reports
source reports
86%
Confidence
medium
Found in 14 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
86%
Signal Score
86 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

36 techniques

Network Information

CountryILIsrael
RegionTel Aviv, Hefa
ASNAS12400
OrganizationPartner Communications

Feed Intelligence Summary

14 reports86% confidence
14
Source reports
86%
Confidence score
Category tags
abuseactive scanningattackbotnetbrute forcebrute force attackc2command and controlcompromised hostcowrie honeypotcredential accesscredential stuffingdata exfiltrationddosddos attackdecoy systemdenial of servicedionaea honeypotdistributed attacksenumerationexploit attemptsexploitationftp brute forcehoneytrap honeypothttp brute forceilindicatorisraellamplateral movementmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware propagationmalware scanningnetworknetwork intrusionnetwork probingnetwork scanningnetwork service scanningpassword attackspassword sprayingpotential malware uploadprocess injectionreconnaissanceremote accessremote servicesresearchedscannersftp attacksmtp brute forcesql injection attemptsssh attackssh monitoringt1018t1021t1021.001t1021.004t1041t1046t1055t1059t1071t1071.001t1076t1078t1078.001t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1204.002t1210t1486t1496t1499.002t1499.003t1563t1565t1573t1588t1595t1595.001t1595.002t1595.003threat actorthreat detectionthreat intelligence

Activity Timeline

1 total obs
Feb 20Feb 20

Threat Activity Heatmap

· Peak: 2026-02-20
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
86%
Confidence
14
Reports
First seenMar 12, 2025
Last seenFeb 20, 2026
GeolocationIL
CountryIsrael
LocationTel Aviv, Hefa
ASNAS12400
OrgPartner Communications
Coords32.0804, 34.7807

VirusTotal

Not checked

WHOIS

description
dionaea, heralding, malicious, ssh, sftp, cowrie, LAMP, honeytrap
raw
inetnum: 2.55.0.0 - 2.55.255.255 netname: PARTNERCOM-CELLULAR-NETS descr: Cellucar subscribers for GGSN RH & YV country: IL admin-c: AIP63-RIPE tech-c: AIP63-RIPE status: ASSIGNED PA mnt-by: partnercom-mnt mnt-lower: partnercom-mnt created: 2011-09-27T09:00:25Z last-modified: 2019-02-05T10:38:43Z source: RIPE person: Abuse ISP Partner remarks: Network Abuse Investigation Department address: 8 Amal Street Rosh Ha'ayin ,Israel 48103 phone: +972 547814505 address: Partner Communications Ltd. nic-hdl: AIP63-RIPE mnt-by: AS12400 created: 2019-02-05T06:38:13Z last-modified: 2021-12-05T16:12:04Z source: RIPE # Filtered route: 2.55.0.0/16 descr: Partner Communications Block origin: AS12400 mnt-by: AS12400-MNT created: 2012-05-07T08:59:23Z last-modified: 2012-05-07T08:59:23Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 14 threat reports