IOC Radar
IPMediumSignal 71/100

213.136.68.157

Location
GermanyGermany
First Seen
Mar 28, 2025
Last Seen
Jan 28, 2026
Mar 28
First Seen
442d ago
Jan 28
Last Seen
136d ago
10
Reports
source reports
71%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

28 techniques

Network Information

CountryDEGermany
RegionBY

Feed Intelligence Summary

10 reports71% confidence
10
Source reports
71%
Confidence score
Category tags
abuseactive scanningapacheapache attackerbankingbotnetbrute forcebrute force attackbrute force attemptscommand and controlcredential accesscredential stuffingcredit card servicesdata exfiltrationdenial of servicedistributed attackseuropeexploitationfinancefinance and insurancefinancial servicesfinancial technologyfranceftp brute forcegermanyhttp brute forceindicatorinitial accessmalicious softwaremalwarenetherlandsnetworknetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attackspayment processingpossible botnet activityprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscannerscanning activitysecurity operationssmtp brute forcessh attackt1021t1021.001t1040t1055t1059t1059.004t1071.001t1076t1078t1078.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1565t1595t1595.001t1595.002t1595.003telnet threatthreat intelligenceudp port scanwealth managementweb application attackweb exploitationweb scanner

Activity Timeline

1 total obs
Jan 28Jan 28

Threat Activity Heatmap

· Peak: 2026-01-28
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
10
Reports
First seenMar 28, 2025
Last seenJan 28, 2026
GeolocationDE
CountryGermany
LocationBY
Coords49.4050, 11.1617

VirusTotal

Not checked

WHOIS

description
Direccionamiento identificado como parte de un ataque a servicios monitorizados.
raw
inetnum: 213.136.64.0 - 213.136.79.255 netname: CONTABO descr: Contabo GmbH country: DE org: ORG-GG22-RIPE admin-c: MH7476-RIPE tech-c: MH7476-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO mnt-lower: MNT-CONTABO mnt-domains: MNT-CONTABO mnt-routes: MNT-CONTABO created: 2013-10-15T10:17:38Z last-modified: 2013-10-15T10:21:06Z source: RIPE organisation: ORG-GG22-RIPE org-name: Contabo GmbH country: DE org-type: LIR remarks: * Please direct all complaints about Internet abuse like Spam, hacking or scans * remarks: * to [email protected] . This will guarantee fastest processing possible. * address: Aschauer Strasse 32a address: 81549 address: Munchen address: GERMANY phone: +498921268372 fax-no: +498921665862 abuse-c: MH12453-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MNT-CONTABO mnt-ref: MNT-OCIRIS mnt-by: RIPE-NCC-HM-MNT mnt-by: MNT-CONTABO created: 2009-12-09T13:41:08Z last-modified: 2021-09-14T10:49:04Z source: RIPE # Filtered person: Johannes Selg address: Contabo GmbH address: Aschauer Str. 32a address: 81549 Muenchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO mnt-by: MNT-GIGA-HOSTING created: 2010-01-04T10:41:37Z last-modified: 2024-04-15T11:05:18Z source: RIPE route: 213.136.68.0/24 descr: CONTABO origin: AS51167 mnt-by: MNT-CONTABO created: 2014-03-02T10:03:40Z last-modified: 2014-03-02T10:03:40Z source: RIPE
references
https://example.com

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 10 threat reports