IOC Radar
IPMediumSignal 100/100

45.168.182.29

Location
BrazilBrazil
Vera Cruz, Rio Grande do Sul
ASN
AS268068
Traudi Ines Sehnem
First Seen
Feb 21, 2025
Last Seen
Feb 15, 2026
Feb 21
First Seen
491d ago
Feb 15
Last Seen
133d ago
10
Reports
source reports
99%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

20 techniques

Network Information

CountryBRBrazil
RegionVera Cruz, Rio Grande do Sul
ASNAS268068
OrganizationTraudi Ines Sehnem

Feed Intelligence Summary

10 reports99% confidence
10
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningattackbotnetbrbrazilbrute forcebrute force attackcommand and controlcowriecowrie honeypotcowrie honeypot datacredential accesscredential stuffingdata exfiltrationdecoy systemdistributed attacksgithubindicatormalicious activitymalicious softwaremalwaremysqlnetworknetwork probingnetwork scanningnetwork service scanningnginxpassword attacksprocess injectionpythonreconnaissanceresearchedscannersecurity policyserversftpsftp attacksftp exploit attemptslugsouth americasshssh attackssh monitoringsurface webt1021t1021.004t1041t1055t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat preventionunauthorized access attempt

Activity Timeline

1 total obs
Feb 15Feb 15

Threat Activity Heatmap

· Peak: 2026-02-15
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
10
Reports
First seenFeb 21, 2025
Last seenFeb 15, 2026
GeolocationBR
CountryBrazil
LocationVera Cruz, Rio Grande do Sul
ASNAS268068
OrgTraudi Ines Sehnem
Coords-29.7728, -52.5282

VirusTotal

Not checked

WHOIS

description
2025-02-20T01:47:24.103Z Honeypot : Cowrie : Source: 45.168.182.29 Data: New connection: 45.168.182.29:6611 (192.168.80.2:23) [session: d0f673923c37]
raw
Socket not responding: [Errno 111] Connection refused
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 10 threat reports