IPMediumSignal 38/100
78.184.56.79
Location
TurkeyEsenler, 34
ASN
AS9121
TurkTelecom
First Seen
May 30, 2025
Last Seen
Apr 7, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
38%
Signal Score
38 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryTurkey
TurkeyRegionEsenler, 34
ASNAS9121
OrganizationTurkTelecom
Feed Intelligence Summary
10 reports38% confidence
10
Source reports
38%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptcommand and controlcommunication protocolcommunication technologiescredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksdecoy systemdenial of servicedistributed attackseurope/asiaexploit attemptsexploitation activityftp brute forcehttp brute forceidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attacklateral movementmalicious activitymalicious softwaremalwaremalware propagationmalware scanningmirai botnetmobile carriersmobile networksnetworknetwork attacksnetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscanscannersecurity policyservice scansmtp brute forcesql injection attemptsssh attackt1021t1021.001t1021.002t1040t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.001t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003targeting databasetcp protocoltelecom servicestelecommunicationstelnet threatthreat actorthreat intelligencethreat preventiontor nodeturkey
Activity Timeline
Apr 7Apr 7
Threat Activity Heatmap
· Peak: 2026-04-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), an IPv4 address identified as 78.184.56.79, represents a significant potential threat to organizational security. Its presence in our environment could signify ongoing reconnaissance, brute-force attacks, or attempts at unauthorized access. The IOC has been flagged by multiple reputable threat intelligence feeds, indicating its widespread association with malicious activity. If left unaddressed, this activity could lead to compromised systems, data exfiltratio…
Threat ScoreLow Risk
38
SIGNAL
Signal Score
38%
Confidence
10
Reports
First seenMay 30, 2025
Last seenApr 7, 2026
GeolocationTR
CountryTurkey
LocationEsenler, 34
ASNAS9121
OrgTurkTelecom
Coords41.0247, 28.9252
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 78.184.0.0 - 78.184.255.255 netname: TurkTelekom descr: TT ADSL-TTnet_dynamic_gay country: tr admin-c: TTBA1-RIPE tech-c: TTBA1-RIPE status: ASSIGNED PA mnt-by: as9121-mnt created: 2007-09-10T09:20:40Z last-modified: 2010-07-26T13:22:27Z source: RIPE # Filtered role: TT Administrative Contact Role address: Turk Telekomunikasyon A.S Turgut Ozal Blv. Aydinlikevler address: 06103 ANKARA TURKEY phone: +90 312 555 0000 fax-no: +90 312 313 1924 admin-c: BADB3-RIPE abuse-mailbox: [email protected] tech-c: BADB3-RIPE tech-c: BADB3-RIPE tech-c: BADB3-RIPE nic-hdl: TTBA1-RIPE mnt-by: AS9121-MNT created: 2002-02-28T12:22:28Z last-modified: 2022-01-28T07:15:56Z source: RIPE # Filtered route: 78.184.0.0/17 descr: TurkTelecom origin: AS9121 mnt-by: AS9121-MNT created: 2007-09-04T06:22:56Z last-modified: 2007-09-04T06:22:56Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 10 threat reports