IOC Radar
IPMediumSignal 100/100

23.133.88.96

Location
United StatesUnited States
Atlanta, Georgia
ASN
AS400509
Ipfb LLC
First Seen
Dec 24, 2024
Last Seen
Jun 7, 2026
Dec 24
First Seen
536d ago
Jun 7
Last Seen
6d ago
19
Reports
source reports
99%
Confidence
medium
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

57 techniques

Network Information

CountryUSUnited States
RegionAtlanta, Georgia
ASNAS400509
OrganizationIpfb LLC

Feed Intelligence Summary

19 reports99% confidence
19
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningadsiatif feedattackauto-generated securitybackdoorbanlist feedbinary defensebotnetbrute forcebrute force attackc2certcivil servicescode injectioncommand and controlcompromised websitescredential accesscredential harvestingcredential stuffingcredential theftctacyber threatsdatadata encryptiondata exfiltrationdgadistributed attacksdnshostnamedrive-by compromiseexploitationextortionfake browser updatefake updatesfinancefinancial institutionfinancial servicesgovernment technologyindicatorinfrastructure acquisitionreconnaissanceingress tool transferinitial accessiocsjavascript injectionkeepkeitaro tdsmaasmailmalicious activitymalicious downloadmalicious softwaremalvertisingmalwaremalware distributionmanualmintsloadernetworknorth americapasspassword attackspayload deliverypayload obfuscationphishingphishing attackprocess injectionpublic administrationpublic infrastructurepublic policyransomhubransomwarereconnaissanceregulatory agenciesremote accessresearchedscannersecurity policysocial engineeringssh attackstatesystem disruptiont1003.002t1016t1021.002t1027t1041t1053.005t1055t1059t1059.001t1059.003t1059.006t1059.007t1069.001t1069.002t1070.004t1071.001t1074.001t1078t1082t1083t1087.002t1095t1105t1110.001t1110.002t1110.003t1110.004t1133t1135t1188t1189t1190t1204t1204.001t1204.002t1482t1486t1490t1496t1499.001t1499.002t1499.003t1552t1555t1565t1566t1566.001t1566.002t1566.003t1572t1587.001t1590.001t1595.001t1595.002t1595.003t1608t1608.004threat actorthreat preventiontriggerturkeyunited statesupdate siemuswater scyllaweb exploitationweb injectionwebsite compromise

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
19
Reports
First seenDec 24, 2024
Last seenJun 7, 2026
GeolocationUS
CountryUnited States
LocationAtlanta, Georgia
ASNAS400509
OrgIpfb LLC
Coords33.7485, -84.3871

VirusTotal

Not checked

WHOIS

description
ip:port combination that delivery a malware payload

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 6 days ago
Appeared in 19 threat reports