IOC Radar
IPMediumSignal 65/100

62.111.142.118

Location
PolandPoland
Szczawno-Zdrój, Mazowieckie
ASN
AS12741
RRC Poland Sp. z o.o.
First Seen
Jan 30, 2025
Last Seen
Aug 20, 2025
Jan 30
First Seen
511d ago
Aug 20
Last Seen
308d ago
9
Reports
source reports
65%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
65%
Signal Score
65 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

10 techniques

Network Information

CountryPLPoland
RegionSzczawno-Zdrój, Mazowieckie
ASNAS12741
OrganizationRRC Poland Sp. z o.o.

Feed Intelligence Summary

9 reports65% confidence
9
Source reports
65%
Confidence score
Category tags
abuseaptbackdoorbad reputationbotnetbotnet activitybrute forcebypassc2command & controlcommand and controlcredential harvestingcredential stuffingctadata exfiltrationdata store exposuredistributed attackseuropeexploitation activityidentity & access exploitationindicatorinjection activitymalicious softwaremalwarenetworkphishingphishing attackplpolandprocess injectionpyresearchedsocial engineeringt1055t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003threat actor

Activity Timeline

1 total obs
Aug 20Aug 20

Threat Activity Heatmap

· Peak: 2025-08-20
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
65
SIGNAL
Signal Score
65%
Confidence
9
Reports
First seenJan 30, 2025
Last seenAug 20, 2025
GeolocationPL
CountryPoland
LocationSzczawno-Zdrój, Mazowieckie
ASNAS12741
OrgRRC Poland Sp. z o.o.
Coords52.2298, 21.0118

VirusTotal

Not checked

WHOIS

raw
inetnum: 62.111.142.112 - 62.111.142.127 netname: RRC-POLAND descr: RRC Poland Sp. z o.o. descr: Farbiarska 69 Warszawa Warszawa descr: remarks: --------------------------------------- remarks: In case of abuse from our address range remarks: please contact [email protected] remarks: --------------------------------------- country: PL admin-c: RD7166-RIPE tech-c: NT1264-RIPE status: ASSIGNED PA mnt-by: NETIA-MNT mnt-lower: NETIA-MNT mnt-routes: NETIA-MNT created: 2016-05-13T07:08:21Z last-modified: 2016-05-13T07:08:21Z source: RIPE role: Netia Telekom S.A. Contact Role address: Poleczki 13 address: 02-822 Warszawa address: Poland phone: +48(22)352 0000 fax-no: +48(22)352 2213 remarks: trouble: 24/7 phone number: +48(22)352 2233 admin-c: MO3780-RIPE tech-c: KP2343-RIPE tech-c: AK3224-RIPE tech-c: RPOZ-RIPE tech-c: MM18723-RIPE tech-c: PN4644-RIPE nic-hdl: NT1264-RIPE remarks: --------------------------------------- remarks: In case of abuse from our address range remarks: please contact [email protected] remarks: --------------------------------------- abuse-mailbox: [email protected] mnt-by: NETIA-MNT created: 2002-09-05T10:14:26Z last-modified: 2017-01-10T08:56:03Z source: RIPE # Filtered person: Rafal Dumala address: Farbiarska 69 address: Warszawa address: Poland phone: +48790012882 nic-hdl: RD7166-RIPE mnt-by: NETIA-MNT created: 2016-03-18T11:00:50Z last-modified: 2016-03-18T11:00:50Z source: RIPE # Filtered route: 62.111.128.0/17 descr: NETIA descr: Netia SA descr: Poleczki 13 descr: 02-822 Warszawa descr: Poland origin: AS12741 mnt-by: NETIA-MNT created: 2014-10-29T07:18:10Z last-modified: 2014-10-29T07:18:10Z source: RIPE route: 62.111.128.0/17 descr: Netia SA descr: Poleczki 13 descr: 02-822 Warszawa descr: Poland origin: AS12968 mnt-by: NETIA-MNT created: 2002-11-26T11:24:24Z last-modified: 2012-11-22T19:42:45Z source: RIPE # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 10 months ago
Appeared in 9 threat reports