IOC Radar
IPMediumSignal 55/100

46.101.130.11

Location
GermanyGermany
Frankfurt am Main, Hessen
ASN
AS14061
Digital Ocean
First Seen
Jul 7, 2025
Last Seen
Apr 7, 2026
Jul 7
First Seen
340d ago
Apr 7
Last Seen
66d ago
10
Reports
source reports
55%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
55%
Signal Score
55 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryDEGermany
RegionFrankfurt am Main, Hessen
ASNAS14061
OrganizationDigital Ocean

Feed Intelligence Summary

10 reports55% confidence
10
Source reports
55%
Confidence score
Category tags
abuseaccess controlaccount compromiseaccount securityactive scanactive scanningadministrative accessbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksdecoy systemdenial of servicedistributed attackseuropeexploitation activitygermanyhackingidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attackmalicious softwaremalwaremirai botnetnetworknetwork activitynetwork attacksnetwork probingnetwork scanningnetwork securityoperating systemoperating system securitypassword attackspotential vulnerability scanprivilege escalationprocess injectionransomwarereconnaissanceremote accessremote servicesresearchedscanscannerscanning activitysecurity policyssh attackt1018t1021.001t1040t1046t1055t1059.001t1069.001t1071.001t1076t1078t1088t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1565t1589t1595t1595.001t1595.002t1595.003tcp protocolthreat intelligencethreat preventionvulnerability scanweb application attackweb exploitation

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
55
SIGNAL
Signal Score
55%
Confidence
10
Reports
First seenJul 7, 2025
Last seenApr 7, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hessen
ASNAS14061
OrgDigital Ocean
Coords50.1109, 8.6820

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 3389 RDP. Same IP should not appear more than once in 96 hours in our lists S3#.
raw
inetnum: 46.101.128.0 - 46.101.255.255 abuse-c: AD10778-RIPE netname: DIGITALOCEAN country: DE admin-c: PT7353-RIPE tech-c: PT7353-RIPE status: ASSIGNED PA mnt-by: digitalocean created: 2020-04-01T22:29:11Z last-modified: 2020-04-01T22:29:11Z source: RIPE person: DigitalOcean Network Operations address: 105 Edgeview Drive, Suite 425 address: Broomfield, Colorado 80021 address: United States of America phone: +16468274366 nic-hdl: PT7353-RIPE mnt-by: digitalocean created: 2015-03-11T16:37:07Z last-modified: 2025-04-11T19:39:01Z source: RIPE # Filtered org: ORG-DOI2-RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 11 months ago · Last seen 2 months ago
Appeared in 10 threat reports