IOC Radar
IPMediumSignal 54/100

45.140.17.98

Location
NetherlandsNetherlands
Amsterdam, Moscow
ASN
AS58061
Privacy Technologies OU
First Seen
Jul 20, 2023
Last Seen
May 29, 2026
Jul 20
First Seen
1060d ago
May 29
Last Seen
16d ago
20
Reports
source reports
54%
Confidence
medium
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
54%
Signal Score
54 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

71 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, Moscow
ASNAS58061
OrganizationPrivacy Technologies OU

Feed Intelligence Summary

20 reports54% confidence
20
Source reports
54%
Confidence score
Category tags
abuseactive scanactive scanningandroid exploitationattackaustraliaautomotive manufacturingbad reputationbankingbotnetbotnet activitybrute forcebrute force attackbrute_forcebulletproof hostingcisco asacisco asa attackcisco asa attackscisco asa vulnerabilitycisco devicecivil servicescode executioncommand and controlcommand executioncommunication protocolconsumer goodscowrie attackcowrie honeypotcowrie interactioncredential accesscredential harvestingcredential stuffingcredential_accesscredit card servicescritical vulnerabilitiescve exploitationdata encryptiondata exfiltrationdata store exposureddosdecoy systemdemodenial of servicedevice managementdionaea attackdionaea honeypotdionaea interactiondistributed attackselectronic health recordselectronics manufacturingencryptionenterprise networkingeuropeeurope/asiaexploit activityexploit avaliableexploit campaignexploit campaignsexploit kitexploitation activityextortionfinancefinance and insurancefinancial servicesfinancial technologyftpftp brute forcegovernment technologyhackinghealth care and social assistancehealth information technologyhealthcare information systemshoneytrap honeypothonghospital managementidentity & access exploitationin the wildindicatorindustrial automationindustrial iotindustrial productioninformation technologyinitial accessinjection activityiot securityit infrastructurelamplockbitlockbit associated activitylouisiana regionmalicious activitymalicious ip addressesmalicious softwaremalwaremalware behaviourmalware capturemanufacturing technologymass scanningmedical servicesmobilemobile securitymobile threatnetherlandsnetworknetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork probingnetwork reconnaissancenetwork scanningnetwork securitynetwork_reconnaissancenloceaniapassword attackspatient carepayment processingphishingphishing attackprocess injectionprocess manufacturingprotocol exploitationproton66 asnproton66 ippublic administrationpublic infrastructurepublic policyquality controlransomwarereconnaissanceredpiranha referenceregulatory agenciesremote accessremote servicesremote services exploitationresearchedretail traderurussiarussian federationscanscannerscanning activitysftp activitysftp attacksftp exploitsocial engineeringsocradar honeypotsoftware developmentsoftware exploitationssh attackssh monitoringsupply chain attacksupply chain managementsystem disruptiont1005t1016t1016.001t1018t1021t1021.001t1027t1040t1041t1046t1053t1055t1056t1056.001t1056.004t1059t1059.004t1064t1068t1071t1071.001t1076t1078t1078.001t1078.002t1078.003t1078.004t1082t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1203t1204t1210t1486t1490t1496t1499.001t1499.002t1499.003t1550.002t1555t1555.003t1558t1563t1565t1566t1566.001t1566.002t1566.003t1567t1583t1588t1589t1589.002t1590t1591t1592t1592.004t1595t1595.001t1595.002t1595.003t1598t1600tannertanner interactiontelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodeunauthorized accessunauthorized login attemptsundergroundunderground forumsunited statesvoipvulnerability scanwealth managementweb app attackweb application attackweb exploitationwordpress vulnerability

Activity Timeline

1 total obs
May 29May 29

Threat Activity Heatmap

· Peak: 2026-05-29
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
54
SIGNAL
Signal Score
54%
Confidence
20
Reports
First seenJul 20, 2023
Last seenMay 29, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, Moscow
ASNAS58061
OrgPrivacy Technologies OU
Coords59.9311, 30.3609

VirusTotal

Not checked

WHOIS

description
This is clone Mass Scanning and Exploit Campaigns
raw
inetnum: 45.140.17.0 - 45.140.17.255 netname: NL-PRIVACYTECHNOLOGIES-20260227 country: NL org: ORG-PTO8-RIPE admin-c: PTO6-RIPE tech-c: PTO6-RIPE status: ASSIGNED PA mnt-by: IP-RIPE created: 2026-02-27T17:00:37Z last-modified: 2026-02-27T17:00:40Z source: RIPE organisation: ORG-PTO8-RIPE org-name: Privacy Technologies OU address: Ehitajate tee 110 address: 13517 Tallinn address: Estonia abuse-c: PTO6-RIPE mnt-ref: IP-RIPE mnt-by: IP-RIPE org-type: OTHER created: 2025-09-24T14:06:45Z last-modified: 2025-09-24T14:06:56Z source: RIPE # Filtered role: Privacy Technologies OU address: Ehitajate tee 110 address: 13517 Tallinn address: Estonia abuse-mailbox: [email protected] nic-hdl: PTO6-RIPE mnt-by: IP-RIPE created: 2025-09-24T14:06:46Z last-modified: 2025-09-24T14:06:46Z source: RIPE # Filtered route: 45.140.17.0/24 origin: AS58061 mnt-by: IP-RIPE created: 2026-02-27T17:00:41Z last-modified: 2026-02-27T17:00:41Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 16 days ago
Appeared in 20 threat reports