IOC Radar
IPMediumSignal 100/100

31.24.156.47

Location
SpainSpain
Madrid, Madrid
ASN
AS50926
AXARNET COMUNICACIONES, S.L
First Seen
Oct 8, 2024
Last Seen
Feb 20, 2026
Oct 8
First Seen
611d ago
Feb 20
Last Seen
111d ago
19
Reports
source reports
99%
Confidence
medium
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Network Information

CountryESSpain
RegionMadrid, Madrid
ASNAS50926
OrganizationAXARNET COMUNICACIONES, S.L

Feed Intelligence Summary

19 reports99% confidence
19
Source reports
99%
Confidence score
Category tags
abuseactive scanningasnattackauthenticationauthentication attackauthentication attacksauthentication attemptsauto-generated securitybotnetbrute forcebrute force attackbrute force attemptbrute-forccommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdecoy systemdistributed attacksdos preventioneseuropeexploit attemptsfailed login attemptsfirewall blockftp brute forcegeoiphttp brute forceinfoinformation technologyinfrastructure acquisitionreconnaissanceinitial accessit infrastructurelogin attacklogin attemptslogin bruteforcelogin failure analysislogin securitymalicious activitymalicious softwaremalwaremanualnetworknetwork intrusionnetwork intrusion attemptnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningnoticepassword attackpassword attackspassword crackingphishing attackprocess injectionprotocol exploitationproxyreconnaissanceremote accessresearchedscanscannersftp attacksocial engineeringsocradar honeypotsoftware developmentspainssh attackssh monitoringt1021t1021.001t1021.002t1021.004t1040t1041t1046t1055t1059t1059.004t1068t1071.001t1078t1078.002t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1204t1486t1496t1499.002t1499.003t1550t1555t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003tannertcp scantelecommunicationstelnet threatthreat actorthreat intelligencetraffic anomaly detectionudp scanunauthorized access attemptsunited kingdomutc+1:00voip

Activity Timeline

1 total obs
Feb 20Feb 20

Threat Activity Heatmap

· Peak: 2026-02-20
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
19
Reports
First seenOct 8, 2024
Last seenFeb 20, 2026
GeolocationES
CountrySpain
LocationMadrid, Madrid
ASNAS50926
OrgAXARNET COMUNICACIONES, S.L
Coords40.4172, -3.6840

VirusTotal

Not checked

WHOIS

description
CC=ES ASN=AS50926 infortelecom hosting s.l. latitude=40.4172 longitude=-3.684
raw
inetnum: 31.24.152.0 - 31.24.159.255 netname: ES-INFORTELECOM-20110224 country: ES org: ORG-ISS3-RIPE admin-c: JDDG1-RIPE tech-c: JDDG1-RIPE status: ALLOCATED PA mnt-by: RIPE-NCC-HM-MNT mnt-by: AS50926-MNT created: 2011-02-24T07:45:40Z last-modified: 2022-06-29T07:19:58Z source: RIPE organisation: ORG-ISS3-RIPE org-name: AXARNET COMUNICACIONES, S.L. country: ES org-type: LIR address: Calle de Duque de Sesto 23, Planta 1 address: 28009 address: Madrid address: SPAIN phone: +34911868181 admin-c: JDDG1-RIPE admin-c: VGP13-RIPE abuse-c: ABIT11-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: AS50926-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: AS50926-MNT created: 2004-10-07T15:33:06Z last-modified: 2025-02-28T09:45:04Z source: RIPE # Filtered person: Jose Daniel Domenech Gasco address: Ronda Narciso Monturiol, 17 address: Ed. ASCENTER III - Of. 1-1 address: 46980 - Paterna address: Valencia - SPAIN phone: +34911868181 nic-hdl: JDDG1-RIPE mnt-by: AS50926-MNT created: 2002-10-08T14:20:22Z last-modified: 2022-02-20T18:27:29Z source: RIPE # Filtered route: 31.24.152.0/21 origin: AS50926 mnt-by: AS50926-MNT created: 2014-10-24T06:45:16Z last-modified: 2022-06-23T10:43:41Z source: RIPE
references
https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 19 threat reports