IOC Radar
IPMediumSignal 33/100

45.58.159.8

Location
NetherlandsNetherlands
Amsterdam, North Holland
ASN
AS46844
Sharktech Inc
First Seen
Jan 24, 2025
Last Seen
Apr 1, 2026
Jan 24
First Seen
516d ago
Apr 1
Last Seen
84d ago
10
Reports
source reports
33%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, North Holland
ASNAS46844
OrganizationSharktech Inc

Feed Intelligence Summary

10 reports33% confidence
10
Source reports
33%
Confidence score
Category tags
abuseaccessactive scanactive scanningapplication reconnaissanceattackbad reputationbankingbotnetbotnet activitybrute forcebrute force attackcms detectioncommand and controlcommand injectioncommunication protocolcowriecowrie activitycowrie honeypotcredential accesscredential harvestingcredential stuffingcredit card servicesdata exfiltrationdata store exposuredatabase securityddosddos attackdecoy systemdenial of servicedirectory bruteforcingdirectory traversaldistributed attacksemaileuropeexploitation activityfinancefinance and insurancefinancial servicesfinancial technologyftp brute forcegithubgroupshoneytrap honeypothttp scannerhttpsidentity & access exploitationinitial accessinjection activityinjection attackslamplateral movementlfimailoney activitymailoney honeypotmalicious activitymalicious payloadmalicious softwaremalwarenetherlandsnetworknetwork enumerationnetwork probingnetwork scanningnlnorth americaowasppassword attackspayment processingphishingphishing attackphishing trappotential malicious activityprocess injectionproxypythonransomwarereconnaissanceresearchedrfiscannerscanning activityscriptservice enumerationservice scansftpsftp attackslugsmtp brute forcesocial engineeringsshssh attackssh monitoringssrfsurface webt1021t1021.004t1041t1055t1059t1059.003t1059.004t1059.005t1059.007t1068t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1203t1486t1495.001t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1583t1589t1590t1592t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat detectiontor nodeunauthorized access attemptsunidentified attackerunited statesvulnerability scanwealth managementweb application attackweb application fingerprintingweb crawlerweb exploitationweb scannerweb trafficxss

Activity Timeline

1 total obs
Apr 1Apr 1

Threat Activity Heatmap

· Peak: 2026-04-01
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
10
Reports
First seenJan 24, 2025
Last seenApr 1, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, North Holland
ASNAS46844
OrgSharktech Inc
Coords37.7510, -97.8220

VirusTotal

Not checked

WHOIS

raw
inetnum: 45.57.0.0 - 45.65.7.255 netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK descr: IPv4 address block not managed by the RIPE NCC remarks: ------------------------------------------------------ remarks: remarks: For registration information, remarks: you can consult the following sources: remarks: remarks: IANA remarks: http://www.iana.org/assignments/ipv4-address-space remarks: http://www.iana.org/assignments/iana-ipv4-special-registry remarks: http://www.iana.org/assignments/ipv4-recovered-address-space remarks: remarks: AFRINIC (Africa) remarks: http://www.afrinic.net/ whois.afrinic.net remarks: remarks: APNIC (Asia Pacific) remarks: http://www.apnic.net/ whois.apnic.net remarks: remarks: ARIN (Northern America) remarks: http://www.arin.net/ whois.arin.net remarks: remarks: LACNIC (Latin America and the Carribean) remarks: http://www.lacnic.net/ whois.lacnic.net remarks: remarks: ------------------------------------------------------ country: EU # Country is really world wide admin-c: IANA1-RIPE tech-c: IANA1-RIPE status: ALLOCATED UNSPECIFIED mnt-by: RIPE-NCC-HM-MNT created: 2021-12-01T15:36:31Z last-modified: 2021-12-01T15:36:31Z source: RIPE role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-RIPE tech-c: IANA1-RIPE nic-hdl: IANA1-RIPE remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: RIPE-NCC-MNT created: 1970-01-01T00:00:00Z last-modified: 2001-09-22T09:31:27Z source: RIPE # Filtered
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 10 threat reports