IOC Radar
IPMediumSignal 37/100

45.182.138.18

Location
BrazilBrazil
Miranda do Norte, Maranhão
ASN
AS269229
Superondas Internet Ltda
First Seen
Jan 25, 2021
Last Seen
May 14, 2026
Jan 25
First Seen
1966d ago
May 14
Last Seen
31d ago
6
Reports
source reports
37%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
37%
Signal Score
37 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryBRBrazil
RegionMiranda do Norte, Maranhão
ASNAS269229
OrganizationSuperondas Internet Ltda

Feed Intelligence Summary

6 reports37% confidence
6
Source reports
37%
Confidence score
Category tags
active scanbad reputationbrazilbrute forcebrute force attackerhttpimageindicatormalicious ipnetworkportscanrangeresearchedscannersservice scansouth americatcpvultr

Activity Timeline

1 total obs
May 14May 14

Threat Activity Heatmap

· Peak: 2026-05-14
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
37
SIGNAL
Signal Score
37%
Confidence
6
Reports
First seenJan 25, 2021
Last seenMay 14, 2026
GeolocationBR
CountryBrazil
LocationMiranda do Norte, Maranhão
ASNAS269229
OrgSuperondas Internet Ltda
Coords-3.6333, -44.3767

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Melbourne (Australia) honeypot
raw
Socket not responding: [Errno 111] Connection refused
references
https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-04-21/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 1 month ago
Appeared in 6 threat reports