IPMediumSignal 64/100
37.59.109.40
Location
FranceRoubaix, Hauts-de-France
ASN
AS16276
VPS static ips
First Seen
Apr 15, 2026
Last Seen
May 29, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
64%
Signal Score
64 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryFrance
FranceRegionRoubaix, Hauts-de-France
ASNAS16276
OrganizationVPS static ips
Feed Intelligence Summary
10 reports64% confidence
10
Source reports
64%
Confidence score
Category tags
active scanactive scanningattackaustraliabrute forcebrute-forcecredential accesscredential stuffingeuropeexploitation activityfrfrancehackingidentity & access exploitationindicatormalicious activitymalwarenetworkoceaniareconnaissanceresearchedscanscannersipsshssh attackt1110.002t1595t1595.001t1595.002t1595.003threat actortor node
Activity Timeline
May 29May 29
Threat Activity Heatmap
· Peak: 2026-05-29LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
64
SIGNAL
Signal Score
64%
Confidence
10
Reports
First seenApr 15, 2026
Last seenMay 29, 2026
GeolocationFR
CountryFrance
LocationRoubaix, Hauts-de-France
ASNAS16276
OrgVPS static ips
Coords50.6924, 3.2011
VirusTotal
Not checked
WHOIS
- description
- IPV4 hosts detected performing scans on production environment located in Australia.
- raw
- NetRange: 37.0.0.0 - 37.255.255.255 CIDR: 37.0.0.0/8 NetName: RIPE-37 NetHandle: NET-37-0-0-0-1 Parent: () NetType: Allocated to RIPE NCC OriginAS: Organization: RIPE Network Coordination Centre (RIPE) RegDate: 2010-11-30 Updated: 2011-01-17 Comment: These addresses have been further assigned to users in Comment: the RIPE NCC region. Contact information can be found in Comment: the RIPE database at http://www.ripe.net/whois Ref: https://rdap.arin.net/registry/ip/37.0.0.0 ResourceLink: https://apps.db.ripe.net/search/query.html ResourceLink: whois.ripe.net OrgName: RIPE Network Coordination Centre OrgId: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL RegDate: Updated: 2013-07-29 Ref: https://rdap.arin.net/registry/entity/RIPE ReferralServer: whois://whois.ripe.net ResourceLink: https://apps.db.ripe.net/search/query.html OrgAbuseHandle: ABUSE3850-ARIN OrgAbuseName: Abuse Contact OrgAbusePhone: +31205354444 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN OrgTechHandle: RNO29-ARIN OrgTechName: RIPE NCC Operations OrgTechPhone: +31 20 535 4444 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN inetnum: 37.59.96.0 - 37.59.127.255 netname: OVH descr: VPS static ips country: FR admin-c: OK217-RIPE tech-c: OTC2-RIPE status: ASSIGNED PA mnt-by: OVH-MNT created: 2016-07-11T13:16:02Z last-modified: 2016-07-11T13:16:02Z source: RIPE role: OVH Technical Contact address: OVH SAS address: 2 rue Kellermann address: 59100 Roubaix address: France admin-c: OK217-RIPE tech-c: GM84-RIPE tech-c: SL10162-RIPE nic-hdl: OTC2-RIPE abuse-mailbox: [email protected] mnt-by: OVH-MNT created: 2004-01-28T17:42:29Z last-modified: 2014-09-05T10:47:15Z source: RIPE # Filtered person: Octave Klaba address: OVH SAS address: 2 rue Kellermann address: 59100 Roubaix address: France phone: +33 9 74 53 13 23 nic-hdl: OK217-RIPE mnt-by: OVH-MNT created: 1970-01-01T00:00:00Z last-modified: 2017-10-30T21:44:51Z source: RIPE # Filtered route: 37.59.0.0/16 descr: OVH ISP descr: Paris, France origin: AS16276 mnt-by: OVH-MNT created: 2012-01-25T17:04:21Z last-modified: 2012-01-25T17:04:21Z source: RIPE # Filtered
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 months ago · Last seen 26 days ago
Appeared in 10 threat reports