IPMediumSignal 75/100
45.11.57.172
Location
UkraineKyiv, MA
ASN
AS6698
Virtual Systems LLC
First Seen
Nov 12, 2022
Last Seen
Jun 22, 2026
Found in 18 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
75%
Signal Score
75 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUkraine
UkraineRegionKyiv, MA
ASNAS6698
OrganizationVirtual Systems LLC
Feed Intelligence Summary
18 reports75% confidence
18
Source reports
75%
Confidence score
Category tags
abuseactive scanaggressive-detectionaptasiaattacker-ipaustraliabad reputationblocklist_allbrute forcebrute force attackerbrute-forcebruteforceconnection-resetcowriecredential stuffingcredential-harvestingcyber securitydefensedigital oceandionaeaenv-huntingeuropeexploitation activityfatthackingidentity & access exploitationindicatoriocmalaysiamalicious ipnetworknextraynginxnorth americaoceaniap0fphishingportscanprotocol-probingransomwareresearchedscanscannerscannerssensor-taggedservice scansipsocradar honeypotsshssh attackt1595tannertcptelnetthreat actortpotukraineunited statesvoidtrapvultrweb app attack
Activity Timeline
Jun 22Jun 22
Threat Activity Heatmap
LessMore
Mon
Wed
Fri
24h
1
Minimal
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
75
SIGNAL
Signal Score
75%
Confidence
18
Reports
First seenNov 12, 2022
Last seenJun 22, 2026
GeolocationUA
CountryUkraine
LocationKyiv, MA
ASNAS6698
OrgVirtual Systems LLC
Coords42.3887, -72.5144
VirusTotal
Not checked
WHOIS
- description
- List of SSH attacking IPs detected by the Rimba Siber honeypot.
- raw
- inetnum: 45.11.56.0 - 45.11.59.255 netname: UA-VSYS-20190426 country: UA org: ORG-VSL22-RIPE admin-c: VS10657-RIPE tech-c: VS10657-RIPE status: ALLOCATED PA geofeed: https://vsys.host/geofeed.csv mnt-by: VSYS-MNT mnt-by: RIPE-NCC-HM-MNT created: 2021-04-28T11:58:25Z last-modified: 2025-09-04T08:45:24Z source: RIPE organisation: ORG-VSL22-RIPE org-name: Virtual Systems LLC country: UA org-type: LIR address: Laboratorna str., building 33/37 address: 03150 address: Kiyv address: UKRAINE phone: +380981968199 phone: +380445915679 reg-nr: 41872207 admin-c: VS10657-RIPE tech-c: VS10657-RIPE abuse-c: AR50431-RIPE mnt-ref: VSYS-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: VSYS-MNT created: 2019-01-23T14:51:44Z last-modified: 2026-04-29T05:39:03Z source: RIPE # Filtered person: Vyacheslav Smyrnov address: Laboratorna 33/37 address: 03150 address: Kiyv address: UKRAINE phone: +380981968199 nic-hdl: VS10657-RIPE mnt-by: VSYS-MNT created: 2019-01-23T14:51:44Z last-modified: 2020-12-24T12:00:56Z source: RIPE route: 45.11.57.0/24 origin: AS30860 mnt-by: YURTEH-MNT created: 2021-05-18T21:39:31Z last-modified: 2021-05-18T21:39:31Z source: RIPE route: 45.11.57.0/24 origin: AS43180 mnt-by: YURTEH-MNT created: 2021-05-18T21:40:36Z last-modified: 2021-05-18T21:40:36Z source: RIPE route: 45.11.57.0/24 origin: AS6698 mnt-by: VSYS-MNT created: 2024-01-22T19:52:22Z last-modified: 2024-01-22T19:52:22Z source: RIPE
- references
- https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-05-14/, https://jamesbrine.com.au, https://redpiranha.net, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-05-13/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-05-12/, https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-05-12/, https://jamesbrine.com.au/digitaloceantoronto-portscan-bruteforce-ip-list-2026-05-09/, https://jamesbrine.com.au/vultrtokyo-portscan-bruteforce-ip-list-2026-05-08/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-05-08/, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen today
Appeared in 18 threat reports