IPMediumSignal 37/100

`80.94.95.208`

Location

Hungary

Budapest, Budapest

ASN

AS204428

Unmanaged LTD

First Seen

Jul 17, 2023

Last Seen

Apr 24, 2026

Jul 17

First Seen

1075d ago

Apr 24

Last Seen

63d ago

Reports

source reports

37%

Confidence

medium

Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

37%

Signal Score

37 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

58 techniques

Network Information

Country

Hungary

RegionBudapest, Budapest

ASNAS204428

OrganizationUnmanaged LTD

IP Category

⟲

Proxy

Proxy server

⊕

VPN

VPN exit node

Feed Intelligence Summary

12 reports37% confidence

Source reports

37%

Confidence score

Category tags

abuseaccess controlaccount compromiseaccount securityactive scanactive scanningadminadministrative accessatif feedattackbad reputationbad web botbanlist feedbinary defenseblog spambotnetbotnet activitybrute forcebrute force attackbrute force attemptsbulgariac2ciscocisco asacisco devicecisco exploitationcisco logscommand & controlcommand and controlcommunication protocolcompromised devicecompromised hostcompromised systemcowriecowrie honeypotcowrie honeypot detectioncowrie logscowrie ssh attackscredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase attackdatabase probingdatabase securityddosddos attackddos attacksddos attemptdecoy systemdenial of servicedevice managementdionaeadionaea honeypotdionaea logsdionaea malware detectiondistributed attacksemailenterprise networkingeuropeexploitexploit attemptexploit kit activityexploitation activityexploited hostfailed loginfraud ordersfraud voipftpftp brute forceftp brute-forcegbhackinghoneytrap honeypotidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinitial accessinjection activityinjection attacksinternet of thingsintrusion detectioniot botnetiot securityiot targetediot/ics attacklamplamp attacklamp server attacklamp stack targetedlateral movementlogin attemptmail protocol abusemailoney honeypotmailoney logsmalicious activitymalicious activity detectedmalicious ipmalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemanualmiraimirai botnetnetworknetwork attacksnetwork infrastructurenetwork intrusion attemptsnetwork probingnetwork reconnaissancenetwork scannetwork scanningnetwork securitynetwork trafficnorth americaopen proxyoperating systemoperating system securitypassword attacksphishingphishing attackphishing trapping of deathpossible malware propagationpotential exploitpotential vulnerability scanprivilege escalationprocess injectionproxyransomwarerdpreconnaissanceredis honeypotredishoneypotremote accessremote servicesresearchedresource hijackingromaniascams & fraudscanscannerscanning activityscripting attackssecurity policysentrypeer botnetsentrypeer logssftpsftp access attemptssftp attacksftp attackssftp intrusion attemptsipsip attackssip brute forcesip scanningsip vulnerability exploitationsmtpsocial engineeringspamsshssh attackssh monitoringt1021t1021.001t1021.002t1021.004t1021.006t1040t1041t1046t1047t1055t1059t1059.003t1059.004t1059.007t1068t1069.001t1071t1071.001t1076t1078t1078.004t1083t1088t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1204t1204.002t1210t1486t1496t1499.001t1499.002t1499.003t1555t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1583t1583.001t1587.001t1588t1589t1590.001t1595t1595.001t1595.002t1595.003tannertanner logstargeting databasetcptcp protocoltelecommunicationsthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunauthorized access attemptsunited kingdomunited statesus source ipvoipvoip attackvpnvpn ipvulnerability scanweb application attackweb attackweb exploitationweb spamwinwindows

Activity Timeline

1 total obs

Apr 24Apr 24

Threat Activity Heatmap

· Peak: 2026-04-24

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Threat ScoreLow Risk

SIGNAL

Signal Score

37%

Confidence

Reports

First seenJul 17, 2023

Last seenApr 24, 2026

GeolocationHU

CountryHungary

LocationBudapest, Budapest

ASNAS204428

OrgUnmanaged LTD

Coords45.9968, 24.9970

ProxyVPN

VirusTotal

Not checked

WHOIS

description: Unknown source type: h0neytr4p
raw: inetnum: 80.94.95.0 - 80.94.95.255 netname: UNMANAGED-LTD country: GB admin-c: PB23091-RIPE tech-c: PB23091-RIPE status: ASSIGNED PA mnt-by: UNMANAGED mnt-by: ro-btel2-1-mnt created: 2024-01-26T20:28:48Z last-modified: 2024-04-18T22:23:55Z source: RIPE person: UNMANAGED LTD NOC - NETWORK OPERATIONS CENTER address: Business First Northampton, Brindley Close, Rushden, England, NN10 6EN phone: +44 (0) 333 305 0020 nic-hdl: PB23091-RIPE mnt-by: UNMANAGED created: 2020-07-26T21:11:55Z last-modified: 2024-09-12T20:00:36Z source: RIPE # Filtered route: 80.94.95.0/24 origin: AS204428 mnt-by: UNMANAGED mnt-by: ro-btel2-1-mnt created: 2022-11-15T14:14:48Z last-modified: 2022-11-15T14:14:48Z source: RIPE
references: https://github.com/telekom-security/tpotce, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt

`80.94.95.208`

MITRE ATT&CK TTPs

Network Information

IP Category

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey