IPLowSignal 34/100
77.71.70.209
Location
BulgariaVarna, Varna
ASN
AS29687
Geodim Ltd
First Seen
Feb 17, 2025
Last Seen
May 2, 2026
Feb 17
First Seen
478d ago
May 2
Last Seen
40d ago
15
Reports
source reports
34%
Confidence
low
0/91
VirusTotal
detections
Found in 15 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryBulgaria
BulgariaRegionVarna, Varna
ASNAS29687
OrganizationGeodim Ltd
Feed Intelligence Summary
15 reports34% confidence
15
Source reports
34%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackbad reputationbgbotnetbotnet activitybrute forcebrute force attemptbulgariacommand and controlcommunication protocolcowriecowrie honeypotcowrie honeypot datacredential accesscredential stuffingctadata exfiltrationdata store exposureddosddos attacksdecoy systemdistributed attackseuropeexploitation activitygithubidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackloginmalicious activitymalicious ipmalicious network activitymalicious softwaremalwaremiraimirai botnetmysqlnetworknetwork attacksnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningnginxprocess injectionprotocol exploitationpythonransomwarereconnaissanceresearchedscanscannersecurity policyserverservice scansftpsftp attacksftp exploit attemptslugsocradar honeypotsshssh attackssh monitoringsurface webt1021t1021.002t1021.004t1040t1041t1046t1055t1056.001t1059.001t1071.001t1078t1110t1110.001t1110.002t1110.003t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003tcptcp protocoltelecommunicationstelnettelnet threatthreat actorthreat intelligencethreat preventiontor nodeunauthorized access attempt
Activity Timeline
May 2May 2
Threat Activity Heatmap
· Peak: 2026-05-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
15
Reports
First seenFeb 17, 2025
Last seenMay 2, 2026
GeolocationBG
CountryBulgaria
LocationVarna, Varna
ASNAS29687
OrgGeodim Ltd
Coords43.2186, 27.9123
WHOIS
- description
- 2025-02-19T16:13:34.723Z Honeypot : Cowrie : Source: 77.71.70.209 Data: Saved redir contents with SHA-256 80c15d8108ea5828bdbdf8a5eff145358ca69532c748ca8ef44b1b82d962762d to dl/80c15d8108ea5828bdbdf8a5eff145358ca69532c748ca8ef44b1b82d962762d
- raw
- inetnum: 77.71.64.0 - 77.71.70.255 netname: BG-BGWAN-001 descr: BGWAN ISP Varna country: BG org: ORG-GL32-RIPE admin-c: DD197-RIPE tech-c: DD197-RIPE status: ASSIGNED PA remarks: INFRA-AW mnt-by: BGWAN-MNT mnt-lower: BGWAN-MNT mnt-domains: BGWAN-MNT mnt-routes: BGWAN-MNT created: 2011-12-07T16:00:41Z last-modified: 2012-11-22T17:26:19Z source: RIPE organisation: ORG-GL32-RIPE org-name: Geodim Ltd. country: BG org-type: LIR address: PEYO YAVOROV 11 address: 9020 address: VARNA address: BULGARIA phone: +359890170133 phone: +35952636244 admin-c: DD197-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: BGWAN-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: BGWAN-MNT abuse-c: BS6730-RIPE created: 2007-02-23T06:11:04Z last-modified: 2023-02-23T19:21:20Z source: RIPE # Filtered person: Dimitar Dimitrov address: 11 "Peyo Yavorov" str. address: Varna 9000, Bulgaria phone: +359 52 636 244 nic-hdl: DD197-RIPE mnt-by: BGWAN-MNT created: 2001-12-11T11:23:26Z last-modified: 2009-12-15T13:49:12Z source: RIPE # Filtered route: 77.71.70.0/24 descr: Geodim Ltd. networks mnt-lower: BGWAN-MNT mnt-routes: BGWAN-MNT origin: AS29687 mnt-by: BGWAN-MNT created: 2018-07-20T14:31:51Z last-modified: 2018-07-20T14:31:51Z source: RIPE
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
lowFirst detected 1 year ago · Last seen 1 month ago
Appeared in 15 threat reports