IOC Radar
IPMediumSignal 51/100

212.132.112.233

Location
United KingdomUnited Kingdom
Berlin, Baden-Wurttemberg
ASN
AS8560
IONOS SE
First Seen
Jun 18, 2025
Last Seen
Nov 12, 2025
Jun 18
First Seen
362d ago
Nov 12
Last Seen
214d ago
8
Reports
source reports
51%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
51%
Signal Score
51 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

42 techniques

Network Information

CountryGBUnited Kingdom
RegionBerlin, Baden-Wurttemberg
ASNAS8560
OrganizationIONOS SE

Feed Intelligence Summary

8 reports51% confidence
8
Source reports
51%
Confidence score
Category tags
abuseaccess controlactive scanningattackbotnetbrute forcebrute force attackbrute force attemptcisco attackcisco devicecisco device targetingcommand and controlcommunication protocolcowrie activitycowrie honeypotcredential accesscredential stuffingdata exfiltrationdatabase attackdecoy systemdenial of servicedevice managementdionaea capturedionaea honeypotdistributed attacksenterprise networkingeuropeexploitgermanyheralding behaviorhoneytrap honeypotindicatorlamplamp attacklamp exploitation attemptslamp stack targetingmalicious activitymalicious network activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork infrastructurenetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionreconnaissanceremote servicesresearchedresource hijackingscannerscanning activityscripting attackssecurity policysentrypeer botnetsentrypeer detectionsftp activitysftp attacksip brute forcesip scanningssh attackssh monitoringt1021t1021.001t1021.002t1021.003t1021.004t1021.005t1021.006t1040t1041t1046t1055t1059t1059.004t1059.007t1068t1071t1071.001t1071.002t1071.003t1071.004t1071.005t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1204.002t1210t1486t1496t1499.001t1499.002t1499.003t1555t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat detectionthreat intelligencethreat preventiontpotceunited kingdomvoipvoip attackweb application attackweb attackweb exploitation

Activity Timeline

1 total obs
Nov 12Nov 12

Threat Activity Heatmap

· Peak: 2025-11-12
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
51
SIGNAL
Signal Score
51%
Confidence
8
Reports
First seenJun 18, 2025
Last seenNov 12, 2025
GeolocationGB
CountryUnited Kingdom
LocationBerlin, Baden-Wurttemberg
ASNAS8560
OrgIONOS SE
Coords51.4964, -0.1224

VirusTotal

Not checked

WHOIS

description
Unknown source type: h0neytr4p
raw
inetnum: 212.132.96.0 - 212.132.127.255 netname: de-ber-ionos-cloud-txl descr: IONOS SE org: ORG-SA12-RIPE country: DE admin-c: IPAD-RIPE tech-c: IPOP-RIPE status: ASSIGNED PA mnt-by: AS8560-MNT mnt-by: STRATO-RZG-MNT created: 2024-03-05T11:59:37Z last-modified: 2025-06-03T16:17:22Z source: RIPE organisation: ORG-SA12-RIPE org-name: IONOS SE country: DE org-type: LIR address: Hinterm Hauptbahnhof 5 address: 76137 address: Karlsruhe address: GERMANY phone: +49 721 91374 0 fax-no: +49 721 91374 212 mnt-ref: RIPE-NCC-HM-MNT mnt-ref: AS8560-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: AS8560-MNT admin-c: IPAD-RIPE abuse-c: ABDE2-RIPE created: 2004-04-17T11:11:55Z last-modified: 2021-08-05T05:33:57Z source: RIPE # Filtered role: IP Administration address: IONOS SE admin-c: JR2342-RIPE admin-c: SH15342-RIPE tech-c: JR2342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPAD-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-20T17:24:09Z last-modified: 2024-08-06T14:19:45Z source: RIPE # Filtered role: IP Operations address: IONOS SE admin-c: JR2342-RIPE admin-c: SH15342-RIPE tech-c: JR2342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPOP-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-28T16:25:04Z last-modified: 2024-08-06T14:19:08Z source: RIPE # Filtered route: 212.132.96.0/19 descr: IONOS SE ber.de origin: AS8560 mnt-by: AS8560-MNT created: 2024-03-05T09:49:39Z last-modified: 2024-03-05T09:49:39Z source: RIPE # Filtered
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 7 months ago
Appeared in 8 threat reports