IOC Radar
IPHighVerifiedSignal 57/100

41.74.201.205

Location
South AfricaSouth Africa
Sandton, Gauteng
ASN
AS37235
Mimecast SA
First Seen
Mar 31, 2026
Last Seen
May 25, 2026
Mar 31
First Seen
75d ago
May 25
Last Seen
20d ago
5
Reports
source reports
57%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
57%
Signal Score
57 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryZASouth Africa
RegionSandton, Gauteng
ASNAS37235
OrganizationMimecast SA

Feed Intelligence Summary

5 reports57% confidence
5
Source reports
57%
Confidence score
Category tags
active scanactive scanningafricaasiachinaeuropefedexindicatorm365metamoneynetworkphish_pdf_macler_aslphish_url_evasiveqrfrompdf_fphishingreconnaissanceresearchedscanscannersellingsipsouth africassht1192t1204.001t1204.002t1566t1595.001t1595.002t1595.003united kingdomview-docza

Activity Timeline

1 total obs
May 25May 25

Threat Activity Heatmap

· Peak: 2026-05-25
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
57
SIGNAL
Signal Score
57%
Confidence
5
Reports
First seenMar 31, 2026
Last seenMay 25, 2026
Verified IOC
GeolocationZA
CountrySouth Africa
LocationSandton, Gauteng
ASNAS37235
OrgMimecast SA
Coords-29.0000, 24.0000

VirusTotal

Not checked

WHOIS

description
CC=ZA ASN=AS37235 african network information center
raw
inetnum: 41.74.200.0 - 41.74.201.255 netname: Mimecast_NET02 descr: Mimecast South Africa RND country: ZA admin-c: MCNO-AFRINIC tech-c: MCNO-AFRINIC status: ASSIGNED PA mnt-by: MIMECAST-MNT source: AFRINIC # Filtered parent: 41.74.192.0 - 41.74.207.255 person: Mimecast Network Operations address: Mimecast South Africa Upper Grayston Office Park Phase 1 150 Linden Road, Strathavon 2031 South Africa phone: tel:+27-11-722-3700 org: ORG-MSA1-AFRINIC nic-hdl: MCNO-AFRINIC abuse-mailbox: [email protected] mnt-by: MIMECAST-MNT source: AFRINIC # Filtered route: 41.74.200.0/23 descr: Mimecast SA origin: AS37235 mnt-by: MIMECAST-MNT source: AFRINIC # Filtered
references
https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 2 months ago · Last seen 20 days ago
Appeared in 5 threat reports