IPMediumSignal 0/100
5.248.23.119
Location
UkraineAuly, Dnipropetrovsk Oblast
ASN
AS15895
Kyivstar LLC
First Seen
Aug 5, 2025
Last Seen
Aug 5, 2025
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUkraine
UkraineRegionAuly, Dnipropetrovsk Oblast
ASNAS15895
OrganizationKyivstar LLC
Feed Intelligence Summary
1 report0% confidence
1
Source reports
0%
Confidence score
Category tags
access controlactive scanningattackblacklist candidatebotnetbotnet activitycommand and controlcommunication protocoldata encryptionddos attacksdecoy systemdistributed attacksindicatorinternet of thingsintrusion detectioniot botnetiot/ics attacklateral movementmalicious activitymalwaremirai botnetnetworknetwork attacksnetwork probingnetwork protocolnetwork scannetwork scanningnetwork securityreconnaissanceresearchedscanscannersecurity policyt1021.002t1040t1046t1068t1071.001t1077t1105t1210t1486t1496t1499.001t1499.002t1499.003t1550.003t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencethreat prevention
Activity Timeline
Aug 5Aug 5
Threat Activity Heatmap
· Peak: 2025-08-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
1
Reports
First seenAug 5, 2025
Last seenAug 5, 2025
GeolocationUA
CountryUkraine
LocationAuly, Dnipropetrovsk Oblast
ASNAS15895
OrgKyivstar LLC
Coords48.5518, 34.4619
VirusTotal
Not checked
WHOIS
- description
- Scans hitting the server at TCP port 445 SMB. Same IP should not appear more than once in 96 hours in our lists S3#.
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 10 months ago · Last seen 10 months ago
Appeared in 1 threat report