IOC Radar
IPLowSignal 100/100

45.66.41.28

Location
GreeceGreece
Athens, Attica
ASN
AS200736
ISP INALAN
First Seen
Aug 30, 2024
Last Seen
May 8, 2026
Aug 30
First Seen
650d ago
May 8
Last Seen
34d ago
22
Reports
source reports
99%
Confidence
low
0/91
VirusTotal
detections
Found in 22 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

55 techniques

Network Information

CountryGRGreece
RegionAthens, Attica
ASNAS200736
OrganizationISP INALAN

Feed Intelligence Summary

22 reports99% confidence
22
Source reports
99%
Confidence score
Category tags
abuseaccess attemptaccess controlaccount discoveryaccount profilingaccount takeoveractive scanactive scanningasiaattackaustraliaauthentication abuseauthentication attackauthentication attacksauto-generated securityblock listbotnetbrute forcebrute force attackbrute force attacksbrute force attemptbrute force attemptsbrute-forcec2china mobilecisco devicecolumnscommand and controlcommunication protocolcommunication technologiescompany limitedcompromised credentialscompromised hostcompromised hostscowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationddosddos attackddos attacksdecoy systemdenial of servicedevice managementdionaea honeypotdistributed attacksenterprise networkingenumerationeuropeexploitexploit attemptsexploit targetingexploited hostfail2ban triggeredfinlandftpftp brute forcegrgreecehackinghk abusehandlerhoneytrap honeypothong konghttp brute forcehttp scannerhttp scanningindicatorinfrastructure acquisitionreconnaissanceintrusion detectioniockfsensor honeypotlamplateral movementlog analysislogin attacklogin attemptlogin securitymalicious activitymalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemalware distributionmalware propagationmalware scanningmalware-related botnet activitymanualmobile carriersmobile networksmultiple failed loginsnetworknetwork attacksnetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork intrusion detectionnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork security monitoringnetwork service scanningnetwork trafficoceaniapassword attackspgp signphishing attackpossible botnet infectionpossible reconnaissanceprocess injectionreconnaissanceremote accessremote servicesresearchedrtbhscanscannerscanning activitysecurity operationssecurity policysftp attacksmtpsmtp brute forcesmtp scanningsocial engineeringsocradar honeypotsql injection attemptssshssh attackssh monitoringt1016t1018t1021t1021.001t1021.002t1021.004t1040t1041t1046t1055t1059t1059.001t1059.004t1071t1071.001t1076t1078t1078.004t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1203t1204.002t1210t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1567t1573t1587.001t1588t1588.002t1588.004t1589t1589.002t1590.001t1592t1595t1595.001t1595.002t1595.003tannertcp protocoltelecom servicestelecommunicationsthreat actorthreat detectionthreat feedthreat intelligencethreat preventiontpotceunauthorized access attemptsunited kingdomus abuseus nonevalid accountsweb application attackweb exploitationweb traffic

Activity Timeline

1 total obs
May 8May 8

Threat Activity Heatmap

· Peak: 2026-05-08
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
22
Reports
First seenAug 30, 2024
Last seenMay 8, 2026
GeolocationGR
CountryGreece
LocationAthens, Attica
ASNAS200736
OrgISP INALAN
Coords38.0167, 23.7500

VirusTotal

0/ 91vendors flagged
0% detection rateJun 7, 2026

WHOIS

description
Data Sources: https://feeds.dshield.org/feeds/topips.txt https://feeds.dshield.org/feeds/top10.txt https://feeds.dshield.org/feeds/block.txt https://feeds.dshield.org/feeds/daily_sources THIS IS NOT A BLOCKLIST! DATA IS UNFILTERED AND CONTAINS FALSE POSITIVES.
raw
inetnum: 45.66.40.0 - 45.66.41.255 netname: MEDIANET-1 geofeed: https://geofeed.inalan.gr/geofeed.csv descr: ISP INALAN descr: MEDIANET INVEST AE country: GR geoloc: 37.9863 23.7234 admin-c: GV7141-RIPE tech-c: KM8470-RIPE status: ASSIGNED PA mnt-by: lir-gr-medianet-1-MNT mnt-by: INALAN-MNT created: 2019-02-12T15:05:53Z last-modified: 2024-12-11T12:25:52Z source: RIPE person: Gene Vladimirov address: Toronto ON, CANADA phone: +19055974276 nic-hdl: GV7141-RIPE mnt-by: PEEREX-MNT created: 2019-02-27T12:47:22Z last-modified: 2019-02-27T12:47:22Z source: RIPE person: KOSTYANTYN MYKHALCHENKO address: 201-1750 Steeles Ave W address: L4K 2L7 address: Toronto ON address: CANADA phone: +1(905) 597-4276 nic-hdl: KM8470-RIPE mnt-by: INTERPEEREX-MNT created: 2019-02-05T08:24:15Z last-modified: 2019-02-06T11:57:58Z source: RIPE route: 45.66.41.0/24 descr: ISP INALAN descr: Greece, Athens origin: AS200736 mnt-by: INALAN-MNT mnt-by: lir-gr-medianet-1-MNT created: 2020-11-12T21:02:53Z last-modified: 2024-12-11T12:27:06Z source: RIPE
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://github.com/telekom-security/tpotce, https://list.rtbh.com.tr/output.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 1 month ago
Appeared in 22 threat reports