IPMediumSignal 64/100
81.196.228.31
Location
RomaniaBucharest, BT
ASN
AS8708
RCS & RDS Business
First Seen
May 4, 2025
Last Seen
Feb 10, 2026
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
64%
Signal Score
64 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryRomania
RomaniaRegionBucharest, BT
ASNAS8708
OrganizationRCS & RDS Business
Feed Intelligence Summary
6 reports64% confidence
6
Source reports
64%
Confidence score
Category tags
abuseactive scanningbotnetbrute forcebrute force attackcommand and controlcredential accesscredential stuffingdata exfiltrationddosdenial of servicedistributed attackseuropeexploit attemptsftp brute forcehttp brute forceindicatorlateral movementmalicious softwaremalwaremalware propagationmalware scanningnetworknetwork probingnetwork scanningpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedromaniasmtp brute forcesql injection attemptsssh attackt1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003
Activity Timeline
Feb 10Feb 10
Threat Activity Heatmap
· Peak: 2026-02-10LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
64
SIGNAL
Signal Score
64%
Confidence
6
Reports
First seenMay 4, 2025
Last seenFeb 10, 2026
GeolocationRO
CountryRomania
LocationBucharest, BT
ASNAS8708
OrgRCS & RDS Business
Coords47.7502, 26.6713
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 81.196.228.0 - 81.196.229.255 netname: RO-RCS-RDS descr: RCS & RDS Business descr: City: Bucuresti remarks: INFRA-AW country: RO admin-c: RDS-RIPE tech-c: RDS-RIPE tech-c: RDS2012-RIPE status: ASSIGNED PA mnt-by: AS8708-MNT mnt-lower: AS8708-MNT created: 2023-03-28T08:51:39Z last-modified: 2023-03-28T08:51:39Z source: RIPE # Filtered role: RCS & RDS NOC address: 71-75 Dr. Staicovici address: Bucharest / ROMANIA phone: +40 21 30 10 888 fax-no: +40 21 30 10 892 abuse-mailbox: [email protected] admin-c: GEPU1-RIPE tech-c: GEPU1-RIPE nic-hdl: RDS-RIPE mnt-by: RDS-MNT remarks: +------------------------------------------------------------+ remarks: | Please use [email protected] for complaints and only after | remarks: | you have tried contacting directly our customers according | remarks: | to the details registered in RIPE database. | remarks: +------------------------------------------------------------+ remarks: | DO NOT CALL, FAX, OR CONTACT US BY ANY OTHER MEANS EXCEPT | remarks: | [email protected] | remarks: +------------------------------------------------------------+ created: 1970-01-01T00:00:00Z last-modified: 2019-08-21T07:16:42Z source: RIPE # Filtered role: RCS RDS address: 71-75 Dr. Staicovici address: Bucharest / ROMANIA phone: +40 21 30 10 888 fax-no: +40 21 30 10 892 abuse-mailbox: [email protected] admin-c: GEPU1-RIPE tech-c: GEPU1-RIPE nic-hdl: RDS2012-RIPE mnt-by: RDS-MNT remarks: +------------------------------------------------------------+ remarks: | Please use [email protected] for complaints and only after | remarks: | you have tried contacting directly our customers according | remarks: | to the details registered in RIPE database. | remarks: +------------------------------------------------------------+ remarks: | DO NOT CALL, FAX, OR CONTACT US BY ANY OTHER MEANS EXCEPT | remarks: | [email protected] | remarks: +------------------------------------------------------------+ created: 2012-01-24T08:33:39Z last-modified: 2013-05-11T03:16:10Z source: RIPE # Filtered route: 81.196.0.0/16 descr: RDSNET origin: AS8708 mnt-by: AS8708-MNT created: 2021-07-05T16:33:28Z last-modified: 2021-07-05T16:33:28Z source: RIPE # Filtered
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 3 months ago
Appeared in 6 threat reports