IOC Radar
IPMediumSignal 34/100

45.58.159.191

Location
NetherlandsNetherlands
Amsterdam, North Holland
ASN
AS46844
Sharktech Inc
First Seen
Nov 6, 2024
Last Seen
May 1, 2026
Nov 6
First Seen
584d ago
May 1
Last Seen
43d ago
15
Reports
source reports
34%
Confidence
medium
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, North Holland
ASNAS46844
OrganizationSharktech Inc

Feed Intelligence Summary

15 reports34% confidence
15
Source reports
34%
Confidence score
Category tags
abuseaccessactive scanactive scanningattackauto-generated securitybad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptscisco devicecitrix exploitation attemptscitrix securitycommand and controlcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosdecoy systemdenial of servicedevice managementdionaea honeypotdistributed attacksemailenterprise networkingenterprise securityeuropeexploitation activityftp brute forcegithubgroupshackinghoneytrap honeypotidentity & access exploitationinjection activitylamplateral movementmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionnetherlandsnetworknetwork enumerationnetwork infrastructurenetwork intrusion attemptnetwork scanningnlnorth americapassword attacksphishingphishing attackphishing trappotential malicious activityprivilege escalation attemptprocess injectionproxypythonransomwarereconnaissanceresearchedscannerscriptservice enumerationsftpsftp attackslugsmtp brute forcesocial engineeringsshssh attackssh monitoringsurface webt1021t1021.004t1041t1055t1059t1059.004t1068t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannertelecommunicationsthreat actorthreat detectionthreat intelligencetor nodeunauthorized access attemptsunidentified attackerunited statesweb application attackweb application attacksweb exploitation

Activity Timeline

1 total obs
May 1May 1

Threat Activity Heatmap

· Peak: 2026-05-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
15
Reports
First seenNov 6, 2024
Last seenMay 1, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, North Holland
ASNAS46844
OrgSharktech Inc
Coords37.7510, -97.8220

VirusTotal

Not checked

WHOIS

description
Unknown source type: h0neytr4p
raw
inetnum: 45.57.0.0 - 45.65.7.255 netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK descr: IPv4 address block not managed by the RIPE NCC remarks: ------------------------------------------------------ remarks: remarks: For registration information, remarks: you can consult the following sources: remarks: remarks: IANA remarks: http://www.iana.org/assignments/ipv4-address-space remarks: http://www.iana.org/assignments/iana-ipv4-special-registry remarks: http://www.iana.org/assignments/ipv4-recovered-address-space remarks: remarks: AFRINIC (Africa) remarks: http://www.afrinic.net/ whois.afrinic.net remarks: remarks: APNIC (Asia Pacific) remarks: http://www.apnic.net/ whois.apnic.net remarks: remarks: ARIN (Northern America) remarks: http://www.arin.net/ whois.arin.net remarks: remarks: LACNIC (Latin America and the Carribean) remarks: http://www.lacnic.net/ whois.lacnic.net remarks: remarks: ------------------------------------------------------ country: EU # Country is really world wide admin-c: IANA1-RIPE tech-c: IANA1-RIPE status: ALLOCATED UNSPECIFIED mnt-by: RIPE-NCC-HM-MNT created: 2021-12-01T15:36:31Z last-modified: 2021-12-01T15:36:31Z source: RIPE role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-RIPE tech-c: IANA1-RIPE nic-hdl: IANA1-RIPE remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: RIPE-NCC-MNT created: 1970-01-01T00:00:00Z last-modified: 2001-09-22T09:31:27Z source: RIPE # Filtered
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 15 threat reports