IOC Radar
IPMediumSignal 71/100

45.153.243.249

Location
GermanyGermany
Frankfurt am Main, Hesse
ASN
AS30823
Routerhosting
First Seen
Mar 6, 2026
Last Seen
Jun 9, 2026
Mar 6
First Seen
110d ago
Jun 9
Last Seen
14d ago
7
Reports
source reports
71%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

20 techniques

Network Information

CountryDEGermany
RegionFrankfurt am Main, Hesse
ASNAS30823
OrganizationRouterhosting

Feed Intelligence Summary

7 reports71% confidence
7
Source reports
71%
Confidence score
Category tags
account compromiseactive scanactive scanningattack surface discoveryaustraliabad web botbotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute-forcecloud infrastructurecloud infrastructure attackcloud servicescommunication protocolcowriecowrie honeypotcredential accesscredential stuffingdata store exposuredatabase attackddosddos attackdedecoy systemdenial of servicedigital oceandionaeadionaea honeypoteuropeexploitation activityexternal threatfattftpgermanyhackinghoneytrap honeypothttp scanneridentity & access exploitationindicatorindicators of compromiseinitial_access_attemptipv4 addressesmailoney honeypotmalicious activitymalwaremalware behaviourmalware capturenetworknetwork intrusion attemptsnetwork probingnetwork scanningnetwork securitynetwork_scanningoceaniap0fpassword attacksphishingphishing attackphishing trapportscanprotocol exploitationreconnaissanceresearchedresource hijackingscannerscannersscanning activitysensor-taggedsentrypeer botnetservice scansmtpsshssh attackssh monitoringsystem accesst1021t1040t1046t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1496t1499.001t1499.002t1595t1595.001t1595.002t1595.003tannertargeting databasetelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodetpotunauthorized activityvoipvoip attackvultrweb app attackweb application attackweb exploitweb exploitationweb traffic

Activity Timeline

1 total obs
Jun 9Jun 9

Threat Activity Heatmap

· Peak: 2026-06-09
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
7
Reports
First seenMar 6, 2026
Last seenJun 9, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS30823
OrgRouterhosting
Coords50.1109, 8.6821

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Melbourne (Australia) honeypot

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 months ago · Last seen 14 days ago
Appeared in 7 threat reports