IOC Radar
IPMediumSignal 45/100

45.136.155.91

Location
TurkeyTurkey
Istanbul, Istanbul
ASN
AS212238
Cdnext IST
First Seen
May 5, 2022
Last Seen
Jun 2, 2026
May 5
First Seen
1503d ago
Jun 2
Last Seen
14d ago
13
Reports
source reports
45%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Network Information

CountryTRTurkey
RegionIstanbul, Istanbul
ASNAS212238
OrganizationCdnext IST

IP Category

VPN
VPN exit node

Feed Intelligence Summary

13 reports45% confidence
13
Source reports
45%
Confidence score
Category tags
abuseactive scanactive scanningaerospace & defenseattackautomotive manufacturingbad reputationbad web botblocklistbotnet activitybrute forcebrute force attackbrute-forcebruteforcecivil servicescowriecredential accesscredential harvestingcredential stuffingcyber securityddosddos attackdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedionaeaelectronics manufacturingeurope/asiaexploitation activityfattgovernment technologyidentity & access exploitationindustrial automationindustrial iotindustrial productioninformation technologyiociot securityit infrastructuremalicious activitymalwaremanufacturing technologymilitary operationsnational securitynetworknextrayp0fpassword attacksphishingphishing attackprocess manufacturingproxypublic administrationpublic infrastructurepublic policyquality controlreconnaissanceregulatory agenciesresearchedscannersecurity operationssensor-taggedsocial engineeringsoftware developmentspamssh attacksupply chain attacksupply chain managementt1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003tannerthreat actorthreat intelligencetor nodetpottrturkeyvpnweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
Jun 2Jun 2

Threat Activity Heatmap

· Peak: 2026-06-02
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
13
Reports
First seenMay 5, 2022
Last seenJun 2, 2026
GeolocationTR
CountryTurkey
LocationIstanbul, Istanbul
ASNAS212238
OrgCdnext IST
Coords41.0138, 28.9497
VPN

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=honeytrap, p0f; threshold?1; private IPs excluded. geo=TR; ports=8003,8005,8008,8009,8080 Location=Sydney, Australia.
raw
inetnum: 45.136.155.0 - 45.136.155.255 netname: CDNEXT-IST country: TR admin-c: DLTS1-RIPE tech-c: DLTS1-RIPE status: ASSIGNED PA mnt-by: DATACAMP-MNT created: 2021-10-25T12:20:25Z last-modified: 2023-10-26T14:51:31Z source: RIPE role: Datacamp Ltd. technical staff address: DataCamp Limited address: Coldbath Square 9 address: London address: United Kingdom nic-hdl: DLTS1-RIPE abuse-mailbox: [email protected] mnt-by: DATACAMP-MNT tech-c: JP4750-RIPE admin-c: JP4750-RIPE created: 2014-06-23T09:09:30Z last-modified: 2025-01-27T12:54:11Z source: RIPE # Filtered route: 45.136.155.0/24 origin: AS212238 descr: CDNEXT IST mnt-by: DATACAMP-MNT created: 2021-10-25T12:19:56Z last-modified: 2023-10-26T14:51:50Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 14 days ago
Appeared in 13 threat reports