IOC Radar
IPMediumSignal 28/100

204.188.228.33

Location
United StatesUnited States
Chicago, Illinois
ASN
AS46844
Sharktech
First Seen
Nov 6, 2024
Last Seen
Apr 27, 2026
Nov 6
First Seen
586d ago
Apr 27
Last Seen
48d ago
15
Reports
source reports
28%
Confidence
medium
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
28%
Signal Score
28 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryUSUnited States
RegionChicago, Illinois
ASNAS46844
OrganizationSharktech

Feed Intelligence Summary

15 reports28% confidence
15
Source reports
28%
Confidence score
Category tags
abuseactive scanactive scanningattackbad reputationbankingbotnetbotnet activitybrute forcebrute force attackcommand and controlcompromised credentialsconpotconpot honeypotcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingcredit card servicesdata exfiltrationdata store exposureddosdecoy systemdenial of servicedionaeadionaea honeypotdistributed attacksemailexploit kit activityexploitation activityfinancefinance and insurancefinancial servicesfinancial technologyftp brute forcegithubhoneytrap honeypotics securityidentity & access exploitationindustrial control systemsinjection activityiot securityiot/ics attacklamplateral movementmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork intrusionnetwork intrusion attemptsnetwork probingnetwork scanningnorth americapassword attackspayment processingphishingphishing attackphishing trapprocess injectionproxypythonreconnaissanceresearchedscannerscanning activitysftpsftp attackslugsocial engineeringsshssh attackssh monitoringsurface webt1021t1041t1046t1053t1055t1059t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1555t1565t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannertelecommunicationsthreat actorthreat detectionthreat intelligencetor nodeunauthorized access attemptunited statesuswealth managementweb application attackweb exploitationweb scanner

Activity Timeline

1 total obs
Apr 27Apr 27

Threat Activity Heatmap

· Peak: 2026-04-27
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
28
SIGNAL
Signal Score
28%
Confidence
15
Reports
First seenNov 6, 2024
Last seenApr 27, 2026
GeolocationUS
CountryUnited States
LocationChicago, Illinois
ASNAS46844
OrgSharktech
Coords41.8764, -87.6133

VirusTotal

Not checked

WHOIS

description
2025-02-22T12:02:51.056Z Honeypot : ConPot : Source: 204.188.228.33 : Port: 2404 Data Type: IEC104 Event Type: CONNECTION_LOST
raw
Sharktech SHARKTECH-INC (NET-204-188-192-0-1) 204.188.192.0 - 204.188.255.255 Sharktech ST-CHI (NET-204-188-192-0-2) 204.188.192.0 - 204.188.255.255
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 15 threat reports