IPMediumSignal 69/100
31.210.36.38
Location
TurkeyBeyoğlu, Istanbul
ASN
AS212219
Hosting Dunyam Bilisim Teknolojileri Ticaret Limited Sirketi
First Seen
Mar 24, 2025
Last Seen
Mar 14, 2026
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryTurkey
TurkeyRegionBeyoğlu, Istanbul
ASNAS212219
OrganizationHosting Dunyam Bilisim Teknolojileri Ticaret Limited Sirketi
Feed Intelligence Summary
8 reports69% confidence
8
Source reports
69%
Confidence score
Category tags
abuseaccess controlaccount compromiseaccount securityactive scanningadministrative accessbotnetbrute forcecommand and controlcommunication protocolcredential accessdata exfiltrationddos attacksdecoy systemdistributed attackseurope/asiaindicatorinitial accessinternet of thingsintrusion detectioniot botnetiot/ics attacklateral movementmalicious softwaremalwaremirai botnetnetworknetwork activitynetwork attacksnetwork probingnetwork scanningnetwork securitynorth americaoperating systemoperating system securitypotential vulnerability scanprivilege escalationprocess injectionreconnaissanceremote accessremote servicesresearchedscanscannerscanning activitysecurity policyt1018t1021.001t1040t1046t1055t1059.001t1069.001t1071.001t1076t1078t1088t1110t1110.001t1110.002t1190t1486t1496t1499.001t1499.002t1499.003t1550.002t1550.003t1563t1565t1589t1595t1595.001t1595.002t1595.003tcp protocolthreat intelligencethreat preventionturkeyunited statesus source ipvalid accounts
Activity Timeline
Mar 14Mar 14
Threat Activity Heatmap
· Peak: 2026-03-14LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
8
Reports
First seenMar 24, 2025
Last seenMar 14, 2026
GeolocationTR
CountryTurkey
LocationBeyoğlu, Istanbul
ASNAS212219
OrgHosting Dunyam Bilisim Teknolojileri Ticaret Limited Sirketi
Coords41.0214, 28.9948
VirusTotal
Not checked
WHOIS
- description
- Scans hitting the server at TCP port 3389 RDP. Same IP should not appear more than once in 96 hours in our lists S3#.
- raw
- inetnum: 31.210.36.0 - 31.210.36.255 netname: TR-GEOIPA-DATEMA-20241017 descr: DATEMA BILSIM TICARET ANONIM SIRKETI country: TR org: ORG-DBTA1-RIPE admin-c: NOC303-RIPE tech-c: NOC303-RIPE status: ASSIGNED PA mnt-domains: mnt-tr-datema-1 mnt-lower: mnt-tr-datema-1 mnt-routes: mnt-tr-datema-1 mnt-by: GEO-MNT created: 2024-10-17T08:49:05Z last-modified: 2025-02-17T21:27:23Z source: RIPE organisation: ORG-DBTA1-RIPE org-name: Datema Bilisim Ticaret Anonim Sirketi country: TR org-type: LIR address: KAYABASI MAH.ULUBATLI HASAN CD D BLK.N:2H/3 BASAKSEHIR address: 34494 address: ISTANBUL address: TURKEY phone: +905301532944 phone: +908504500800 admin-c: NOC303-RIPE tech-c: NOC303-RIPE tech-c: TR6040-RIPE abuse-c: AR57476-RIPE mnt-ref: mnt-tr-datema-1 mnt-ref: MNT-NETERRA mnt-ref: GEO-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: mnt-tr-datema-1 created: 2020-01-20T14:58:57Z last-modified: 2023-08-16T11:38:06Z source: RIPE # Filtered role: Network Operation Center address: KAYABASI MAH.ULUBATLI HASAN CD D BLK.N:2H/3 BASAKSEHIR address: 34494 address: ISTANBUL address: TURKEY phone: +908504500800 abuse-mailbox: [email protected] nic-hdl: NOC303-RIPE mnt-by: mnt-tr-datema-1 created: 2020-01-20T14:58:56Z last-modified: 2023-11-23T14:38:27Z source: RIPE # Filtered route: 31.210.36.0/24 origin: AS212219 mnt-by: GEO-MNT created: 2024-10-17T08:47:29Z last-modified: 2024-10-17T08:47:29Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 3 months ago
Appeared in 8 threat reports