IOC Radar
IPMediumSignal 68/100

212.47.148.222

Location
AzerbaijanAzerbaijan
Yevlakh, Yevlax City
ASN
AS8814
Aztelekom LLC
First Seen
Aug 7, 2025
Last Seen
Apr 24, 2026
Aug 7
First Seen
310d ago
Apr 24
Last Seen
50d ago
6
Reports
source reports
68%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryAZAzerbaijan
RegionYevlakh, Yevlax City
ASNAS8814
OrganizationAztelekom LLC

Feed Intelligence Summary

6 reports68% confidence
6
Source reports
68%
Confidence score
Category tags
active scanbrute forcebrute force attackerbrute-forceindicatornetworkportscanresearchedscannerscannersservice scanvultr

Activity Timeline

1 total obs
Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
6
Reports
First seenAug 7, 2025
Last seenApr 24, 2026
GeolocationAZ
CountryAzerbaijan
LocationYevlakh, Yevlax City
ASNAS8814
OrgAztelekom LLC
Coords40.5040, 47.4997

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Tokyo (Japan) honeypot
raw
inetnum: 212.47.144.0 - 212.47.151.255 netname: AZTELEKOM-ISP descr: Aztelekom LLC country: AZ geoloc: 40.6128 47.1460 language: EN org: ORG-AA137-RIPE admin-c: AA46177-RIPE tech-c: AA46177-RIPE status: ASSIGNED PA mnt-by: AZTELEKOM-MNT mnt-lower: AZTELEKOM-MNT mnt-domains: AZTELEKOM-MNT mnt-routes: AZTELEKOM-MNT created: 2026-02-12T00:18:27Z last-modified: 2026-02-12T00:18:27Z source: RIPE # Filtered organisation: ORG-AA137-RIPE org-name: Aztelekom LLC country: AZ org-type: LIR address: Aztelekom, TBILISI AVE. 187 address: AZ1122 address: BAKU address: AZERBAIJAN phone: +994123440000 fax-no: +994124931787 admin-c: IG3115-RIPE abuse-c: AR14123-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: AZTELEKOM-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: AZTELEKOM-MNT created: 2004-11-04T06:11:08Z last-modified: 2022-02-11T14:41:01Z source: RIPE # Filtered person: Aydamir Aydamirov address: Tbilisi Ave 187, AZ1122 phone: +994 12 344 00 00 nic-hdl: AA46177-RIPE created: 2026-01-26T09:25:03Z last-modified: 2026-02-11T19:39:58Z source: RIPE mnt-by: AZTELEKOM-MNT mnt-by: MNT-AZTELEKOM route: 212.47.148.0/22 descr: AZTELEKOM-ISP origin: AS8814 mnt-by: AZTELEKOM-MNT created: 2023-10-27T22:28:50Z last-modified: 2026-02-12T00:24:23Z source: RIPE
references
https://jamesbrine.com.au/vultrtokyo-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 10 months ago · Last seen 1 month ago
Appeared in 6 threat reports