IOC Radar
IPMediumSignal 72/100

79.127.134.2

Location
FranceFrance
Paris, Rhône-Alpes
ASN
AS212238
DataCamp Limited
First Seen
Jan 23, 2025
Last Seen
May 24, 2026
Jan 23
First Seen
505d ago
May 24
Last Seen
20d ago
16
Reports
source reports
72%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
72%
Signal Score
72 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

10 techniques

Network Information

CountryFRFrance
RegionParis, Rhône-Alpes
ASNAS212238
OrganizationDataCamp Limited

IP Category

VPN
VPN exit node

Feed Intelligence Summary

16 reports72% confidence
16
Source reports
72%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapacheapache attackeraptbad reputationbrute forcebrute force attackbrute-forcecredential accesscredential stuffingddosdenial of serviceeuropeexploitation activityfrfrancehackingidentity & access exploitationit infrastructurenetworkpassword attacksproxyreconnaissanceresearchedscannersecurity policysoftware developmentspamssht1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1595.001t1595.002t1595.003threat actorthreat preventiontor nodevpnweb application attackweb exploitation

Activity Timeline

1 total obs
May 24May 24

Threat Activity Heatmap

· Peak: 2026-05-24
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
72
SIGNAL
Signal Score
72%
Confidence
16
Reports
First seenJan 23, 2025
Last seenMay 24, 2026
GeolocationFR
CountryFrance
LocationParis, Rhône-Alpes
ASNAS212238
OrgDataCamp Limited
Coords45.7660, 4.8795
VPN

VirusTotal

Not checked

WHOIS

description
The following is the full list of names given to Vye32GsS2g38eKhmaKrLdDjgrnf2YBT4/FGx8SNCa4txePA
raw
inetnum: 79.127.134.0 - 79.127.134.255 netname: CDNEXT-PAR country: FR admin-c: DLTS1-RIPE tech-c: DLTS1-RIPE status: ASSIGNED PA mnt-by: DATACAMP-MNT created: 2024-09-16T14:40:12Z last-modified: 2024-09-16T14:40:12Z source: RIPE role: Datacamp Ltd. technical staff address: DataCamp Limited address: Coldbath Square 9 address: London address: United Kingdom nic-hdl: DLTS1-RIPE abuse-mailbox: [email protected] mnt-by: DATACAMP-MNT tech-c: JP4750-RIPE admin-c: JP4750-RIPE created: 2014-06-23T09:09:30Z last-modified: 2025-01-27T12:54:11Z source: RIPE # Filtered route: 79.127.134.0/24 origin: AS212238 descr: CDNEXT Paris mnt-by: DATACAMP-MNT created: 2024-09-16T14:40:12Z last-modified: 2024-09-16T14:40:12Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 20 days ago
Appeared in 16 threat reports