IPMediumSignal 71/100

`37.44.44.58`

Location

Russian Federation

Smolensk, Smolensk Oblast

ASN

AS44265

SMOLTELECOM

First Seen

Sep 20, 2024

Last Seen

Jan 28, 2026

Sep 20

First Seen

631d ago

Jan 28

Last Seen

136d ago

Reports

source reports

71%

Confidence

medium

Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

71%

Signal Score

71 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

48 techniques

Network Information

Country

Russian Federation

RegionSmolensk, Smolensk Oblast

ASNAS44265

OrganizationSMOLTELECOM

Feed Intelligence Summary

9 reports71% confidence

Source reports

71%

Confidence score

Category tags

abuseaccess controlactive scanningattackbotnetbotnet activity detectedbrute forcebrute force attackbrute force attacksc2c2 communicationcommand and controlcompromised credentialscompromised hostscowrie honeypotcredential accesscredential stuffingdata exfiltrationddos preparationdecoy systemdistributed attackseurope/asiaexploit attemptsexploited hostfin scanftp brute forcehackinghoneytrap honeypothttp scanninghttps scanningindicatoriot targetedlamplateral movementmalicious activitymalicious sftp activitymalicious softwaremalicious ssh activitymalwaremalware distributionnetworknetwork enumerationnetwork intrusionnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningnull scanopen port detectionpassword attacksprocess injectionprotocol exploitationproxy activityreconnaissanceresearchedrussiascannersecurity policyservice enumerationsftp attacksmtp scanningssh attackssh monitoringstealth scansyn scant1003t1005t1016t1018t1021t1021.004t1040t1041t1043t1046t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1083t1090t1090.001t1090.002t1090.003t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1497t1499.002t1499.003t1550t1552t1555t1556t1565t1573t1595t1595.001t1595.002t1595.003targeted scantelnet threatthreat actorthreat detectionthreat preventionudp port scanxmas scan

Activity Timeline

1 total obs

Jan 28Jan 28

Threat Activity Heatmap

· Peak: 2026-01-28

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Threat ScoreHigh Risk

SIGNAL

Signal Score

71%

Confidence

Reports

First seenSep 20, 2024

Last seenJan 28, 2026

GeolocationRU

CountryRussian Federation

LocationSmolensk, Smolensk Oblast

ASNAS44265

OrgSMOLTELECOM

Coords54.7995, 32.0298

VirusTotal

Not checked

WHOIS

raw: inetnum: 37.44.44.0 - 37.44.47.255 netname: SMOLTELECOM-CITYCOMM-NET descr: Smoltelecom PPPoE (dynamic IPs for Citycomm, pool #3) country: RU admin-c: AS14187-RIPE tech-c: SA5357-RIPE status: ASSIGNED PA mnt-by: MNT-SMOLTELECOM created: 2012-07-10T07:01:33Z last-modified: 2012-07-10T07:01:33Z source: RIPE role: Smoltelecom Admin address: 214000, Russian Federation, Smolensk, Studencheskaya str., 5 admin-c: AS14187-RIPE admin-c: IS1687-RIPE tech-c: AS14187-RIPE tech-c: IS1687-RIPE nic-hdl: SA5357-RIPE mnt-by: MNT-SMOLTELECOM created: 2007-12-11T06:32:54Z last-modified: 2022-09-14T07:21:18Z source: RIPE # Filtered person: Anatoly Sennov address: 214000, Russian Federation, Smolensk, Studencheskaya str., 5 phone: +7(481)2328802 mnt-by: MNT-SMOLTELECOM nic-hdl: AS14187-RIPE created: 2007-12-10T08:20:07Z last-modified: 2022-09-14T07:20:37Z source: RIPE # Filtered route: 37.44.40.0/21 descr: RU-SMOLTELECOM-NET origin: AS44265 mnt-by: MNT-SMOLTELECOM created: 2012-01-17T07:19:18Z last-modified: 2012-01-17T07:19:18Z source: RIPE

`37.44.44.58`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy