IPMediumSignal 27/100
45.8.22.152
Location
United StatesLos Angeles, California
ASN
AS206216
Advin Services LLC
First Seen
Apr 7, 2025
Last Seen
Apr 5, 2026
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
27%
Signal Score
27 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionLos Angeles, California
ASNAS206216
OrganizationAdvin Services LLC
Feed Intelligence Summary
11 reports27% confidence
11
Source reports
27%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningantispamapplication layer attackattackautomated attackbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attemptcommand and controlcommunication protocolcredential accesscredential stuffingdata exfiltrationdata store exposureddosdecoy systemdenial of servicedistributed attacksexecutable fileexploitation activityexploited hosthackinghttp scanneridentity & access exploitationindicatorinjection activityintrusion detectionlog4jmalicious activitymalicious softwaremalwarenetworknetwork attacksnetwork securitynorth americapassword attacksprocess injectionreconnaissanceresearchedscannerscripting languagesecurity policyself-signedspamt1040t1055t1059.007t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1185t1187t1190t1203t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencethreat preventiontor nodeunited statesweb applicationweb application attackweb application exploitationweb developmentweb exploitationweb trafficwp-login.php
Activity Timeline
Apr 5Apr 5
Threat Activity Heatmap
· Peak: 2026-04-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
27
SIGNAL
Signal Score
27%
Confidence
11
Reports
First seenApr 7, 2025
Last seenApr 5, 2026
GeolocationUS
CountryUnited States
LocationLos Angeles, California
ASNAS206216
OrgAdvin Services LLC
Coords34.0526, -118.2439
VirusTotal
Not checked
WHOIS
- description
- Bruteforce hitting the server at TCP HTTPS wp-login.php. Same IP should not appear more than once in 24 hours in this list.
- raw
- NetRange: 45.8.0.0 - 45.9.231.255 CIDR: 45.8.0.0/16, 45.9.0.0/17, 45.9.224.0/21, 45.9.128.0/18, 45.9.192.0/19 NetName: RIPE NetHandle: NET-45-8-0-0-1 Parent: NET45 (NET-45-0-0-0-0) NetType: Early Registrations, Transferred to RIPE NCC OriginAS: Organization: RIPE Network Coordination Centre (RIPE) RegDate: 2015-03-03 Updated: 2025-02-10 Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois. Ref: https://rdap.arin.net/registry/ip/45.8.0.0 ResourceLink: https://apps.db.ripe.net/db-web-ui/query ResourceLink: whois.ripe.net OrgName: RIPE Network Coordination Centre OrgId: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL RegDate: Updated: 2013-07-29 Ref: https://rdap.arin.net/registry/entity/RIPE ReferralServer: whois.ripe.net ResourceLink: https://apps.db.ripe.net/db-web-ui/query OrgAbuseHandle: ABUSE3850-ARIN OrgAbuseName: Abuse Contact OrgAbusePhone: +31205354444 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN OrgTechHandle: RNO29-ARIN OrgTechName: RIPE NCC Operations OrgTechPhone: +31 20 535 4444 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 11 threat reports