IOC Radar
IPMediumSignal 68/100

45.157.112.7

Location
FranceFrance
Paris, Île-de-France
ASN
AS206092
VPN Consumer Paris, France
First Seen
Apr 5, 2026
Last Seen
Jun 10, 2026
Apr 5
First Seen
76d ago
Jun 10
Last Seen
11d ago
9
Reports
source reports
68%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

10 techniques

Network Information

CountryFRFrance
RegionParis, Île-de-France
ASNAS206092
OrganizationVPN Consumer Paris, France

IP Category

VPN
VPN exit node

Feed Intelligence Summary

9 reports68% confidence
9
Source reports
68%
Confidence score
Category tags
abuseactive scanactive scanningaptbad reputationbad web botblocklistbotnet activitybrute forcebrute force attackbrute-forcebruteforcecowriecredential accesscredential stuffingddosdenial of servicedionaeaeuropeexploitation activityfattfrfrancehackingidentity & access exploitationnetworkp0fpassword attacksproxyreconnaissanceresearchedscannersensor-taggedspamssht1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1595.001t1595.002t1595.003tannerthreat actortpotvpnweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
Jun 10Jun 10

Threat Activity Heatmap

· Peak: 2026-06-10
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
9
Reports
First seenApr 5, 2026
Last seenJun 10, 2026
GeolocationFR
CountryFrance
LocationParis, Île-de-France
ASNAS206092
OrgVPN Consumer Paris, France
Coords48.8566, 2.3522
VPN

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=honeytrap, p0f; threshold?1; private IPs excluded. geo=FR; ports=49155 Location=Sydney, Australia.
raw
inetnum: 45.157.112.0 - 45.157.112.255 netname: PARIS-FR-45-157-112-0 country: FR geoloc: 48.8548601 2.3465979 geofeed: https://www.prefixbroker.com/prefixbroker-geofeed.csv org: ORG-VCPF2-RIPE admin-c: VCAR3-RIPE tech-c: VCAR3-RIPE status: ASSIGNED PA mnt-by: PREFIXBROKER-MNT created: 2024-06-01T07:16:57Z last-modified: 2024-06-01T07:16:57Z source: RIPE organisation: ORG-VCPF2-RIPE org-name: VPN Consumer Paris, France org-type: OTHER address: Paris, France country: FR abuse-c: VCAR3-RIPE mnt-ref: PREFIXBROKER-MNT mnt-by: PREFIXBROKER-MNT created: 2023-11-22T08:46:23Z last-modified: 2024-01-03T08:25:43Z source: RIPE # Filtered role: VPN Consumer Abuse Role address: AZ Business Center address: Avenida Perez Chitre address: Panama, 00395 address: Republica de Panama nic-hdl: VCAR3-RIPE abuse-mailbox: [email protected] mnt-by: PREFIXBROKER-MNT created: 2023-11-22T08:33:27Z last-modified: 2023-11-22T08:33:27Z source: RIPE # Filtered route: 45.157.112.0/24 origin: AS206092 mnt-by: PREFIXBROKER-MNT created: 2024-06-01T07:16:57Z last-modified: 2024-06-01T07:16:57Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 11 days ago
Appeared in 9 threat reports