IOC Radar
IPMediumSignal 32/100

65.87.7.22

Location
United StatesUnited States
Cherry Hill, New Jersey
ASN
AS215659
Aokigahara SRL
First Seen
Feb 17, 2025
Last Seen
Apr 20, 2026
Feb 17
First Seen
480d ago
Apr 20
Last Seen
53d ago
15
Reports
source reports
32%
Confidence
medium
1/91
VirusTotal
detections
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
32%
Signal Score
32 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Network Information

CountryUSUnited States
RegionCherry Hill, New Jersey
ASNAS215659
OrganizationAokigahara SRL

IP Category

Proxy
Proxy server

Feed Intelligence Summary

15 reports32% confidence
15
Source reports
32%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredecoy systemdistributed attacksexit nodeexploitation activityidentity & access exploitationindicatorinjection activitymalicious activitymalicious softwaremalwaremalware distributionnetworknetwork scanningnetwork trafficnorth americapassword attacksphishingphishing attackprocess injectionproxyreconnaissanceresearchedsecurity policysocial engineeringssh attackt1016t1055t1071t1071.001t1071.002t1071.004t1090t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1572t1588t1595.001t1595.002t1595.003threat actorthreat intelligencethreat preventiontortor activitytor exit nodetor networktor nodeunited states

Activity Timeline

1 total obs
Apr 20Apr 20

Threat Activity Heatmap

· Peak: 2026-04-20
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), specifically an IPv4 address, represents a significant potential threat to organizational integrity. Its documented presence across multiple threat intelligence feeds, including those identifying it as a Tor exit node and associating it with brute-force malware, suggests a high likelihood of its involvement in malicious activities. Should this IP address be detected interacting with internal network resources, it could signify active reconnaissance, credential…

Threat ScoreLow Risk
32
SIGNAL
Signal Score
32%
Confidence
15
Reports
First seenFeb 17, 2025
Last seenApr 20, 2026
GeolocationUS
CountryUnited States
LocationCherry Hill, New Jersey
ASNAS215659
OrgAokigahara SRL
Coords39.9268, -75.0246
Proxy

VirusTotal

1/ 91vendors flagged
1% detection rateJun 3, 2026

WHOIS

description
tor search result.
raw
Neopolitan Networks NEOPOLITAN-BLK-1 (NET-65-87-0-0-1) 65.87.0.0 - 65.87.31.255 IPXO LLC IPXO-65-87-8-4-22 (NET-65-87-4-0-1) 65.87.4.0 - 65.87.7.255 Internet Utilities NA LLC NETUTILS (NET-65-87-4-0-2) 65.87.4.0 - 65.87.7.255 Private Customer 65-87-7-0-24 (NET-65-87-7-0-1) 65.87.7.0 - 65.87.7.255
references
https://check.torproject.org/torbulkexitlist

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 15 threat reports