IOC Radar
IPMediumSignal 38/100

51.178.30.134

Location
FranceFrance
Roubaix, Hauts-de-France
ASN
AS16276
OVH
First Seen
Sep 16, 2024
Last Seen
Apr 5, 2026
Sep 16
First Seen
645d ago
Apr 5
Last Seen
80d ago
19
Reports
source reports
38%
Confidence
medium
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
38%
Signal Score
38 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

42 techniques

Network Information

CountryFRFrance
RegionRoubaix, Hauts-de-France
ASNAS16276
OrganizationOVH

IP Category

Proxy
Proxy server

Feed Intelligence Summary

19 reports38% confidence
19
Source reports
38%
Confidence score
Category tags
abuseactive scanactive scanningatif feedattackaustraliaauthentication attackauthentication attacksauto-generated securitybad reputationbanlist feedbinary defenseblocked ipbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forccisco devicecommand and controlcommunication protocolcompromise attemptcompromised credentialscowrie attackscowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposureddosddos attackddos attemptdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkingenumerationeuropeexploitationexploitation activityfail2ban triggeredfrfranceftp brute forcehoneytrap honeypothttp brute forceidentity & access exploitationinfoinfrastructure acquisitionreconnaissanceinjection activitylamplogin attackmailoney honeypotmalicious activitymalicious softwaremalwaremanualnetworknetwork infrastructurenetwork probingnetwork reconnaissancenetwork scanningnetwork securitynetwork security monitoringnetwork traffic analysisnoticeoceaniapassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationproxyransomwarereconnaissanceremote accessresearchedresource hijackingscannersecurity operationssentrypeer attackssentrypeer botnetservice exploitationsftp access attemptssftp attacksftp probingsip brute forcesip vulnerability scanningsocial engineeringsocradar honeypotssh attackssh monitoringt1018t1021t1021.004t1040t1041t1046t1055t1059t1059.001t1059.004t1071t1071.001t1078t1078.001t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1588t1588.002t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003tannertanner attackstelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodeunauthorized access attemptunited kingdomvoipvoip attackvulnerability scanweb brute force

Activity Timeline

1 total obs
Apr 5Apr 5

Threat Activity Heatmap

· Peak: 2026-04-05
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
38
SIGNAL
Signal Score
38%
Confidence
19
Reports
First seenSep 16, 2024
Last seenApr 5, 2026
GeolocationFR
CountryFrance
LocationRoubaix, Hauts-de-France
ASNAS16276
OrgOVH
Coords50.6924, 3.2011
Proxy

VirusTotal

Not checked

WHOIS

description
2024-09-18T19:45:10.674Z Honeypot : Cowrie : Source: 51.178.30.134 Data: login attempt [fhf/fhf123] failed
raw
inetnum: 51.178.24.0 - 51.178.31.255 netname: VPS-GRA6 country: FR org: ORG-OS3-RIPE admin-c: OTC2-RIPE tech-c: OTC2-RIPE status: LEGACY mnt-by: OVH-MNT created: 2019-12-03T18:08:24Z last-modified: 2019-12-03T18:08:24Z source: RIPE organisation: ORG-OS3-RIPE org-name: OVH SAS country: FR org-type: LIR address: 2 rue Kellermann address: 59100 address: Roubaix address: FRANCE phone: +33972101007 admin-c: OTC2-RIPE admin-c: OK217-RIPE admin-c: GM84-RIPE abuse-c: AR15333-RIPE mnt-ref: OVH-MNT mnt-ref: RIPE-NCC-HM-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: OVH-MNT created: 2004-04-17T11:23:17Z last-modified: 2020-12-16T10:24:51Z source: RIPE # Filtered role: OVH Technical Contact address: OVH SAS address: 2 rue Kellermann address: 59100 Roubaix address: France admin-c: OK217-RIPE tech-c: GM84-RIPE tech-c: SL10162-RIPE nic-hdl: OTC2-RIPE abuse-mailbox: [email protected] mnt-by: OVH-MNT created: 2004-01-28T17:42:29Z last-modified: 2014-09-05T10:47:15Z source: RIPE # Filtered route: 51.178.0.0/16 origin: AS16276 mnt-by: OVH-MNT created: 2019-11-27T15:23:33Z last-modified: 2019-11-27T15:23:33Z source: RIPE
references
https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://github.com/telekom-security/tpotce, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 19 threat reports