IOC Radar
IPMediumSignal 78/100

212.64.199.191

Location
TurkeyTurkey
Istanbul, Van
ASN
AS197450
Sunucun Bilgi Iletisim Teknolojileri VE Ticaret Limited Sirketi
First Seen
Mar 12, 2025
Last Seen
May 8, 2026
Mar 12
First Seen
459d ago
May 8
Last Seen
37d ago
17
Reports
source reports
78%
Confidence
medium
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

145 techniques

Network Information

CountryTRTurkey
RegionIstanbul, Van
ASNAS197450
OrganizationSunucun Bilgi Iletisim Teknolojileri VE Ticaret Limited Sirketi

Feed Intelligence Summary

17 reports78% confidence
17
Source reports
78%
Confidence score
Category tags
abuseactive scanactive scanningaptbad reputationbotnetbotnet activitybotnet iocsbotnet miraibrute forcebrute force attackbrute force attemptsc2cnccommand & controlcommand and controlcompromise ipv4connected devicescredential accesscredential harvestingcredential stuffingcredentialsdark webdata exfiltrationdata store exposureddosddos attacksdefault credentialsdevice managementdistributed attacksdomainselfeurope/asiaexecutable fileexploitationexploitation activitygorillabotidentity & access exploitationindicatorindicators of compromiseindustrial iotinfrastructure acquisitionreconnaissanceinitial accessinjection activityinternet of thingsiocsiotiot analyticsiot applicationsiot botnetiot devicesiot malwareiot platformsiot securityiot/ics attackipv4ipv4 portlateral movementlinuxmalicious softwaremalwaremiraimirai botnetmirai botnet activitynetworknetwork scanningnetwork securitynetwork trafficopen-diropendirpassword attacksphishingphishing attackpolcertprocess injectionprotocol exploitationransomwarereconnaissanceresearchedshell accesssmart devicessocial engineeringssh attackt1016t1021.001t1021.002t1021.003t1036t1036.005t1040t1053t1055t1057t1059t1059.004t1059.005t1068t1070t1070.001t1070.002t1070.003t1070.004t1071t1071.001t1071.002t1071.004t1078t1078.001t1078.002t1078.003t1078.004t1105t1110.001t1110.002t1110.003t1110.004t1113t1124t1133t1189t1190t1486t1489t1496t1497t1497.001t1498t1498.001t1499.002t1499.003t1562t1562.001t1562.002t1562.003t1564t1564.001t1564.002t1564.003t1564.004t1565t1565.001t1565.002t1566t1566.001t1566.002t1566.003t1567t1567.001t1567.002t1573t1573.001t1573.002t1574t1574.001t1574.002t1574.009t1583t1583.001t1583.002t1583.003t1583.004t1583.005t1583.006t1583.007t1584t1584.001t1584.002t1584.003t1585t1585.001t1585.002t1586t1586.001t1586.002t1587t1587.001t1587.002t1588t1588.001t1588.002t1588.003t1589t1590.001t1591t1591.001t1591.002t1592t1592.001t1592.002t1592.003t1592.004t1593t1593.001t1593.002t1594t1595t1595.001t1595.002t1595.003t1596t1596.001t1596.002t1597t1597.001t1597.002t1598t1598.001t1598.002t1598.003t1599t1600t1601t1602t1608t1608.001t1608.002t1608.003t1608.004t1609t1610t1611t1612t1613t1614t1615t1619t1620t1621telecommunicationstelnet threatthreat actortor nodetrturkeyua-wget

Activity Timeline

1 total obs
May 8May 8

Threat Activity Heatmap

· Peak: 2026-05-08
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
17
Reports
First seenMar 12, 2025
Last seenMay 8, 2026
GeolocationTR
CountryTurkey
LocationIstanbul, Van
ASNAS197450
OrgSunucun Bilgi Iletisim Teknolojileri VE Ticaret Limited Sirketi
Coords41.0214, 28.9948

VirusTotal

Not checked

WHOIS

description
CC=TR ASN=AS12599 atlas on-line
raw
inetnum: 212.64.199.0 - 212.64.199.255 netname: TR-INTS-20231109 descr: SUNUCUN BILGI ILETSIM TEKNOLOJILER? VE TICARET LIMITED SIRKETI remarks: ------------------------------------------ remarks: PLEASE USE THIS MAIL FOR ABUSE ISSUES remarks: [email protected] remarks: ------------------------------------------ org: ORG-SBIT3-RIPE country: TR admin-c: IZ1132-RIPE tech-c: IZ1132-RIPE status: ASSIGNED PA created: 2023-11-11T17:14:12Z last-modified: 2024-04-05T23:53:46Z source: RIPE mnt-by: MNT-INTERNETSAHIBI organisation: ORG-SBIT3-RIPE org-name: SUNUCUN BILGI ILETISIM TEKNOLOJILERI VE TICARET LIMITED SIRKETI country: TR org-type: OTHER address: MASLAK MAH. AOS 55. SK. 42 MASLAK B BLOK SITESI NO: 4 IC KAPI NO: 542 SARIYER / ?STANBUL abuse-c: ACRO53135-RIPE mnt-ref: ulasatakan mnt-ref: GEO-MNT mnt-ref: TR-ATLAS-MNT mnt-ref: MNT-INTERNETSAHIBI mnt-ref: DATAPENTA-MNT mnt-ref: MNT-NETERRA mnt-by: ulasatakan mnt-by: lir-tr-teknosos-1-MNT mnt-by: sunucun-mnt mnt-by: MNT-INTERNETSAHIBI mnt-by: GEO-MNT created: 2023-06-16T13:46:06Z last-modified: 2025-07-08T11:02:03Z source: RIPE # Filtered person: Ismail Zeyrek address: MASLAK MAH. AOS 55. SK. 42 MASLAK B BLOK NO: 4/542 SARIYER / ISTANBUL phone: +90 850 308 82 26 nic-hdl: IZ1132-RIPE mnt-by: sunucun-mnt created: 2023-11-29T12:54:13Z last-modified: 2023-11-29T12:54:13Z source: RIPE route: 212.64.199.0/24 origin: AS197450 mnt-by: MNT-INTERNETSAHIBI created: 2023-11-11T17:14:42Z last-modified: 2023-11-11T17:14:42Z source: RIPE
references
https://threatfox.abuse.ch/export/csv/recent/, https://1275.ru/ioc/gs-25-1387-mirai-botnet-iocs_10192, https://1275.ru/ioc/gs-25-1172-mirai-botnet-iocs_9936, https://1275.ru/ioc/gs-25-1173-mirai-botnet-iocs_9945

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 17 threat reports