IOC Radar
IPMediumSignal 100/100

45.83.65.119

Location
GermanyGermany
Berlin, State of Berlin
ASN
AS208843
INTERNET-RESEARCH
First Seen
Oct 9, 2020
Last Seen
Feb 13, 2026
Oct 9
First Seen
2081d ago
Feb 13
Last Seen
127d ago
25
Reports
source reports
99%
Confidence
medium
Found in 25 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

44 techniques

Network Information

CountryDEGermany
RegionBerlin, State of Berlin
ASNAS208843
OrganizationINTERNET-RESEARCH

Feed Intelligence Summary

25 reports99% confidence
25
Source reports
99%
Confidence score
Category tags
abuseactive scanningaerospace & defensealpha_strike_labs-benignasiaattackauto-generated securityautomotive manufacturingbeningbening scannerbotnetbrute forcecitrix securitycivil servicescommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingcyber securitydata exfiltrationdatabase securitydedecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedionaea honeypotdistributed attackselectronics manufacturingenterprise securityeuropeexploit attemptsftpftp brute forcegermanygovernment technologyhoneytrap honeypothttp brute forcehttp scannerhttp scanningindicatorindustrial automationindustrial iotindustrial productioninformation gatheringinfrastructure acquisitionreconnaissanceinitial accessiockazakhstankaznetlampmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware propagationmanualmanufacturing technologymilitary operationsmysql brute forcenational securitynetworknetwork attacksnetwork monitoringnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork traffic analysisnextraynorth americaphishingphishing attackphishing trappossible botnet activitypossible reconnaissance activityprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlreconnaissanceregulatory agenciesremote accessremote servicesresearchedsansscannersecurity operationsserver exploitationsftp attackslugsmtpsmtp attackersmtp brute forcesocial engineeringsql injectionssh attackssh monitoringsupply chain managementsurface webt1018t1021t1021.001t1040t1041t1046t1047t1053t1055t1059t1059.003t1059.004t1071.001t1076t1078t1083t1110t1110.001t1110.002t1110.003t1190t1204.002t1210t1486t1496t1499.002t1499.003t1505.002t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1583t1583.001t1583.002t1587.001t1590.001t1595t1595.001t1595.002t1595.003tannertcp protocoltcp/21tcp/23tcp/3306tcp/80telnet threatthreat actorthreat detectionthreat intelligencetsecunauthorized access attemptunited statesverified-benignvnc protocolweb application scanningweb traffic

Activity Timeline

1 total obs
Feb 13Feb 13

Threat Activity Heatmap

· Peak: 2026-02-13
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
25
Reports
First seenOct 9, 2020
Last seenFeb 13, 2026
GeolocationDE
CountryGermany
LocationBerlin, State of Berlin
ASNAS208843
OrgINTERNET-RESEARCH
Coords52.4286, 13.5316

VirusTotal

Not checked

WHOIS

description
2024-12-11T21:38:14.210Z Honeypot : Dionaea : Source: 45.83.65.119 : Port: 21 Connection: {'transport': 'tcp', 'protocol': 'ftpd', 'type': 'accept'}
raw
inetnum: 45.83.64.1 - 45.83.67.255 descr: Internet Security Research Project - For exclude requests mail to [email protected] netname: INTERNET-RESEARCH-NET country: DE admin-c: JK14422-RIPE tech-c: SL13095-RIPE status: ASSIGNED PA mnt-by: mnt-de-alpha-1 created: 2019-06-03T12:02:31Z last-modified: 2022-05-03T08:33:27Z source: RIPE person: Alpha Strike Labs GmbH address: Albert-Einstein-Stra�e 14 address: 12489 address: Berlin address: GERMANY phone: +4930120877420 nic-hdl: JK14422-RIPE mnt-by: mnt-de-alpha-1 created: 2019-05-20T06:30:07Z last-modified: 2019-06-03T12:09:33Z source: RIPE person: Alpha Strike Labs GmbH address: Albert-Einstein-Stra�e 14 address: 12489 address: Berlin address: GERMANY phone: +4930120877420 nic-hdl: SL13095-RIPE mnt-by: mnt-de-alpha-1 created: 2019-05-20T06:30:07Z last-modified: 2025-07-07T10:09:35Z source: RIPE # Filtered route: 45.83.64.0/22 origin: AS208843 mnt-by: mnt-de-alpha-1 created: 2021-01-22T12:15:51Z last-modified: 2021-01-22T12:16:20Z source: RIPE
references
https://threats.kz, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 4 months ago
Appeared in 25 threat reports