IOC Radar
IPMediumSignal 49/100

5.45.70.178

Location
NetherlandsNetherlands
Amsterdam, Drenthe
ASN
AS58061
ISPIRIA Networks Ltd
First Seen
Jan 19, 2025
Last Seen
Jun 10, 2026
Jan 19
First Seen
509d ago
Jun 10
Last Seen
2d ago
9
Reports
source reports
49%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
49%
Signal Score
49 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

34 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, Drenthe
ASNAS58061
OrganizationISPIRIA Networks Ltd

Feed Intelligence Summary

9 reports49% confidence
9
Source reports
49%
Confidence score
Category tags
active scanapt28asiaax registrybotnetbotnet activitybrute forcecentral asiacertcertuacisa kevcivil servicescommand and controlcredential harvestingcredential stuffingcyber espionagedata exfiltrationdata store exposuredistributed attacksencodereuropeexecutable fileexploit avaliableexploitation activitygovernment technologyhatvibehtahta trojanidentity & access exploitationin the wildindicatorinfrastructure acquisitionreconnaissanceingress tool transferinjection activitykazakhstanloadermalicious softwaremalwaremalware analysismanualmulti-layer obfuscationnetherlandsnetworknlphishingphishing attackprocess injectionpublic administrationpublic infrastructurepublic policypythonpython scriptratregulatory agenciesremote access trojanresearchedsocial engineeringt1003t1003.001t1027t1027.002t1047t1053.005t1055t1059.005t1059.007t1064t1071t1071.001t1082t1105t1140t1189t1190t1195.002t1204.002t1486t1496t1499.002t1499.003t1547t1547.001t1565t1566t1566.001t1566.002t1566.003t1573t1573.001t1587.001t1590.001threat actortor nodetrojan malwareturkeyukrainevbevbe techniquevbe techniquesvulnerability scanwindows script encoderx32dbgx32dbg debugging

Activity Timeline

1 total obs
Jun 10Jun 10

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
49
SIGNAL
Signal Score
49%
Confidence
9
Reports
First seenJan 19, 2025
Last seenJun 10, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, Drenthe
ASNAS58061
OrgISPIRIA Networks Ltd
Coords52.3676, 4.9041

VirusTotal

Not checked

WHOIS

description
CC=NL ASN=AS58061 Scalaxy B.V.
raw
inetnum: 5.45.64.0 - 5.45.71.255 netname: CLOUD-NETWORK-NL descr: ******************************************************** descr: * As ISP we provide IP transit and bandwidth services. descr: * descr: * Those services are self managed by our customers descr: * therefore, we are not using this IP space ourselves descr: * and it could be assigned to various end customers. descr: * descr: * In case of issues related with SPAM, Fraud, Phishing descr: * DDoS, port scans or others, feel free to contact us descr: * with relevant info. Abuse email: [email protected] descr: ******************************************************** country: NL geoloc: 52.717972 6.199986 org: ORG-INC4-RIPE admin-c: CAWO1-RIPE tech-c: CAWO1-RIPE status: ASSIGNED PA mnt-by: IROKO-MNT remarks: IROKO Networks Corporation remarks: Technical issues: [email protected] remarks: Services request: [email protected] remarks: Abuse departament: [email protected] remarks: Corporate web site: https://iroko.net created: 2013-04-24T11:24:28Z last-modified: 2024-08-16T16:21:03Z source: RIPE organisation: ORG-INC4-RIPE org-name: IROKO Networks Corporation org-type: OTHER address: Panama city, Panama address: Postal Address: 63/66 Hatton Garden, Suite 23, London, EC1N 8LE, United Kingdom abuse-c: ACRO15876-RIPE mnt-ref: IROKO-MNT mnt-ref: IP-RIPE mnt-by: IROKO-MNT created: 2021-04-26T12:05:29Z last-modified: 2025-10-28T17:51:05Z source: RIPE # Filtered person: Carlos Alberto Weand Ortiz address: 63/66 Hatton Garden, Suite 23, London, EC1N 8LE, United Kingdom phone: +1 231 577 6775 nic-hdl: CAWO1-RIPE mnt-by: IROKO-MNT created: 2021-04-26T12:59:46Z last-modified: 2023-06-01T12:55:12Z source: RIPE route: 5.45.64.0/21 descr: Managed by IROKO Networks origin: AS58061 mnt-by: IROKO-MNT created: 2020-04-10T00:58:13Z last-modified: 2024-08-16T16:25:34Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 days ago
Appeared in 9 threat reports