IOC Radar
IPMediumSignal 100/100

80.94.92.15

Location
RomaniaRomania
Amsterdam, North Holland
ASN
AS47890
Techoff SRV Limited
First Seen
Apr 22, 2022
Last Seen
Jun 8, 2026
Apr 22
First Seen
1521d ago
Jun 8
Last Seen
13d ago
26
Reports
source reports
99%
Confidence
medium
Found in 26 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryRORomania
RegionAmsterdam, North Holland
ASNAS47890
OrganizationTechoff SRV Limited

Feed Intelligence Summary

26 reports99% confidence
26
Source reports
99%
Confidence score
Category tags
access controlactive scanactive scanningapplication layer protocolaptauthentication failurebad web botbankingbotnetbotnet activitybrute forcebrute force attackbrute-forcec2 communicationcommand & controlcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingcredit card servicesdata encryptionddosddos attackddos attack preparationddos attacksdecoy systemdenial of servicedigital oceandistributed attacksdnsdns attackencryptioneuropeexploitationexploitation activityexploited hostfinancefinancial servicesfinancial technologyftphackinghttp scannerhttpsidentity & access exploitationindicatorinternet of thingsintrusion detectioniot attackiot botnetiot securityiot/ics attackirclateral movementloginlogin attemptsmalicious activitymalwaremalware distributionmirai botnetnetherlandsnetworknetwork attacksnetwork probenetwork probingnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningpassword attackspayment processingphishingphishing attackprotocol exploitationreconnaissanceremote access attemptremote system discoveryresearchedroromaniascanscannerscannersscanning activitysecurity policyservice scansmtpsocial engineeringspamsshssh attacksystem discoveryt1018t1021t1040t1046t1053t1059t1071t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1203t1496t1499.001t1499.002t1499.003t1566.001t1566.002t1566.003t1573t1589t1595t1595.001t1595.002t1595.003tcp protocoltelnet threatthreat actorthreat intelligencethreat preventiontor nodeunauthorized accessunited kingdomwealth managementweb app attackweb application attackweb exploitationweb scannerweb spamweb traffic

Activity Timeline

1 total obs
Jun 8Jun 8

Threat Activity Heatmap

· Peak: 2026-06-08
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
26
Reports
First seenApr 22, 2022
Last seenJun 8, 2026
GeolocationRO
CountryRomania
LocationAmsterdam, North Holland
ASNAS47890
OrgTechoff SRV Limited
Coords52.3676, 4.9041

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean Toronto (CA) honeypot

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 13 days ago
Appeared in 26 threat reports