IOC Radar
IPMediumSignal 35/100

79.32.216.28

Location
ItalyItaly
Rome, 62
ASN
AS3269
INTERBUSINESS
First Seen
May 26, 2025
Last Seen
Apr 21, 2026
May 26
First Seen
383d ago
Apr 21
Last Seen
54d ago
8
Reports
source reports
35%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryITItaly
RegionRome, 62
ASNAS3269
OrganizationINTERBUSINESS

Feed Intelligence Summary

8 reports35% confidence
8
Source reports
35%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcredential accesscredential stuffingdata exfiltrationdata store exposureddosdenial of servicedistributed attackseuropeexploit attemptsexploitation activityftp brute forcehttp brute forceidentity & access exploitationindicatorinjection activityitalylateral movementmalicious softwaremalwaremalware propagationmalware scanningnetworknetwork probingnetwork scanningpassword attacksprocess injectionransomwarereconnaissanceremote accessremote servicesresearchedscannersmtp brute forcesocradar honeypotsql injection attemptsssh attackt1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003targeting database

Activity Timeline

1 total obs
Apr 21Apr 21

Threat Activity Heatmap

· Peak: 2026-04-21
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
8
Reports
First seenMay 26, 2025
Last seenApr 21, 2026
GeolocationIT
CountryItaly
LocationRome, 62
ASNAS3269
OrgINTERBUSINESS
Coords41.8283, 12.8904

VirusTotal

Not checked

WHOIS

raw
inetnum: 79.32.128.0 - 79.32.255.255 netname: TELECOM-ADSL-POOL descr: NAS DHCP Pool Cagliari country: IT admin-c: BS104-RIPE tech-c: BS104-RIPE status: ASSIGNED PA remarks: INFRA-AW mnt-by: TIWS-MNT mnt-lower: TIWS-MNT mnt-routes: TIWS-MNT created: 2010-05-20T13:58:13Z last-modified: 2010-05-20T13:58:13Z source: RIPE person: BBBEASYIP STAFF address: Via Oriolo Romano 240 address: 00189 Roma address: Italy phone: +39 06 36881 nic-hdl: BS104-RIPE mnt-by: TIWS-MNT created: 2001-10-19T12:23:31Z last-modified: 2019-01-15T13:58:43Z source: RIPE # Filtered route: 79.32.0.0/15 descr: INTERBUSINESS origin: AS3269 mnt-by: TIWS-MNT mnt-routes: INTERB-MNT created: 2007-12-05T13:34:41Z last-modified: 2007-12-05T13:34:41Z source: RIPE # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 8 threat reports