IPMediumSignal 39/100
45.146.130.128
Location
BrazilPlano Piloto, Federal District
ASN
AS13335
Hexo TechnologyLLC
First Seen
Aug 15, 2022
Last Seen
Apr 30, 2026
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
39%
Signal Score
39 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryBrazil
BrazilRegionPlano Piloto, Federal District
ASNAS13335
OrganizationHexo TechnologyLLC
Feed Intelligence Summary
13 reports39% confidence
13
Source reports
39%
Confidence score
Category tags
abuseaccess controlaccount compromiseaccount securityactive scanactive scanningadminadministrative accessasiaauthentication attemptauthentication failurebad reputationbotnetbotnet activitybrbrazilbrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attacksdecoy systemdistributed attackseuropeexploitation activityhackingidentity & access exploitationinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attackiranisraellogin attacklogin attemptlogin brute forcemalicious ipmalicious softwaremalwaremiraimirai botnetnetherlandsnetworknetwork attacksnetwork probingnetwork scannetwork scanningnetwork securitynetwork service scanningnorth americaoperating systemoperating system securitypassword attacksphishingphishing attackpotential vulnerability scanprivilege escalationprocess injectionproxyransomwarerdprdp enumerationrdp port scanningreconnaissanceremote accessremote servicesresearchedscanscannerscanning activitysecurity policyservice scanseychellessocial engineeringsouth americassh attackt1021.001t1040t1046t1055t1069.001t1071.001t1076t1078t1078.002t1088t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1486t1496t1499.001t1499.002t1499.003t1550t1550.003t1555t1555.003t1563t1565t1566.001t1566.002t1566.003t1589t1589.002t1595t1595.001t1595.002t1595.003tcptcp protocolthreat intelligencethreat preventionunited statesus ip addressus ip sourcevulnerability scanwinwindows
Activity Timeline
Apr 30Apr 30
Threat Activity Heatmap
· Peak: 2026-04-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
39
SIGNAL
Signal Score
39%
Confidence
13
Reports
First seenAug 15, 2022
Last seenApr 30, 2026
GeolocationBR
CountryBrazil
LocationPlano Piloto, Federal District
ASNAS13335
OrgHexo TechnologyLLC
Coords31.5000, 34.7500
VirusTotal
Not checked
WHOIS
- description
- RDP brute force authentication activity
- raw
- inetnum: 45.146.130.0 - 45.146.130.255 netname: US-RAPIDSEEDBOX country: US admin-c: YA57494-RIPE tech-c: YA57494-RIPE status: ASSIGNED PA mnt-by: sc-rapidseedbox-1-mnt created: 2025-07-14T07:13:56Z last-modified: 2025-07-14T07:13:56Z source: RIPE person: Rapid Seedbox address: Global Gateway 8, Rue de la Perle, Providence, Victoria, Mahe address: Seychelles address: P.O Box 440 phone: +13039520447 nic-hdl: YA57494-RIPE mnt-by: sc-rapidseedbox-1-mnt created: 2017-02-16T02:14:23Z last-modified: 2021-11-29T22:59:46Z source: RIPE route: 45.146.130.0/24 origin: AS213790 mnt-by: sc-rapidseedbox-1-mnt created: 2025-07-14T20:09:06Z last-modified: 2025-07-14T20:09:06Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen 1 month ago
Appeared in 13 threat reports