IOC Radar
IPHighVerifiedSignal 50/100

37.212.55.82

Location
BelarusBelarus
Minsk, HR
ASN
AS6697
Republican Unitary Telecommunication Enterprise Beltelecom
First Seen
Jan 10, 2026
Last Seen
May 1, 2026
Jan 10
First Seen
155d ago
May 1
Last Seen
44d ago
4
Reports
source reports
50%
Confidence
high
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryBYBelarus
RegionMinsk, HR
ASNAS6697
OrganizationRepublican Unitary Telecommunication Enterprise Beltelecom

Feed Intelligence Summary

4 reports50% confidence
4
Source reports
50%
Confidence score
Category tags
active scanactive scanningbelarusbrute forcebrute-forcebruteforcecowriedionaeaeuropefatthackingindicatornetworkp0freconnaissanceresearchedscannersensor-taggedt-pott1595.001t1595.002t1595.003tannertpot

Activity Timeline

1 total obs
May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
4
Reports
First seenJan 10, 2026
Last seenMay 1, 2026
Verified IOC
GeolocationBY
CountryBelarus
LocationMinsk, HR
ASNAS6697
OrgRepublican Unitary Telecommunication Enterprise Beltelecom
Coords53.0875, 25.3256

VirusTotal

Not checked

WHOIS

description
seen in Dionaea honeypot logs; events=5; services=smbd; ports=445; cc=BY; asn=6697; asn_org=Republican Unitary Telecommunication Enterprise Beltelecom
raw
inetnum: 37.212.48.0 - 37.212.67.255 netname: BYFLY-GRODNO-DYNAMIC descr: BELTELECOM descr: GRODNO branch descr: BYFLY(tm) dynamic pools descr: Republic of Belarus country: BY admin-c: BYGF-RIPE tech-c: BYGF-RIPE abuse-c: BYGF-RIPE status: ASSIGNED PA mnt-by: AS6697-MNT created: 2021-05-13T11:38:20Z last-modified: 2021-05-13T11:38:20Z source: RIPE role: Beltelecom Grodno Admins admin-c: AB3939-RIPE tech-c: MS56683-RIPE address: Grodno Branch address: 29, K.Marks str. address: Republic of Belarus abuse-mailbox: [email protected] nic-hdl: BYGF-RIPE mnt-by: AS6697-MNT created: 2018-10-08T12:02:43Z last-modified: 2024-03-01T08:26:55Z source: RIPE # Filtered route: 37.212.48.0/21 origin: AS6697 mnt-by: AS6697-MNT created: 2020-02-25T07:22:22Z last-modified: 2020-02-25T07:22:22Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 5 months ago · Last seen 1 month ago
Appeared in 4 threat reports