IOC Radar
IPMediumSignal 55/100

85.215.243.238

Location
GermanyGermany
Berlin, Berlin
ASN
AS8560
Strato AG
First Seen
Jan 28, 2025
Last Seen
Feb 12, 2026
Jan 28
First Seen
498d ago
Feb 12
Last Seen
118d ago
6
Reports
source reports
55%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
55%
Signal Score
55 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

15 techniques

Network Information

CountryDEGermany
RegionBerlin, Berlin
ASNAS8560
OrganizationStrato AG

Feed Intelligence Summary

6 reports55% confidence
6
Source reports
55%
Confidence score
Category tags
academic institutionsactive scanaptbotnetbotnet activitybrute forcec2civil servicescommand & controlcommand and controlcredential harvestingcredential stuffingcyber threatsdata encryptiondata exfiltrationdata store exposurededistributed attackseducational resourceseducational serviceseducational technologyelectronic health recordsencryptioneuropeexploitation activityextortionfinancefinancial servicesgermanygovernment technologyhealth care and social assistancehealth information technologyhealthcare information systemshigher educationhospital managementidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityk-12 educationmalicious softwaremalwaremanualmediamedical servicesnetworkpatient carephishingphishing attackprocess injectionpublic administrationpublic infrastructurepublic policyransomwareregulatory agenciesresearchedsocial engineeringsystem disruptiont1055t1071.001t1078t1486t1490t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001threat actortor node

Activity Timeline

1 total obs
Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
55
SIGNAL
Signal Score
55%
Confidence
6
Reports
First seenJan 28, 2025
Last seenFeb 12, 2026
GeolocationDE
CountryGermany
LocationBerlin, Berlin
ASNAS8560
OrgStrato AG
Coords52.5234, 13.3224

VirusTotal

Not checked

WHOIS

raw
inetnum: 85.215.240.0 - 85.215.243.255 netname: de-ber-ionos-cloud-txl descr: IONOS SE country: DE admin-c: IPAD-RIPE tech-c: IPOP-RIPE status: ASSIGNED PA mnt-by: AS8560-MNT created: 2024-11-21T17:03:31Z last-modified: 2025-06-03T16:17:36Z source: RIPE role: IP Administration address: IONOS SE admin-c: SH15342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPAD-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-20T17:24:09Z last-modified: 2025-09-26T12:26:46Z source: RIPE # Filtered role: IP Operations address: IONOS SE admin-c: SH15342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPOP-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-28T16:25:04Z last-modified: 2025-09-26T12:26:44Z source: RIPE # Filtered route: 85.215.128.0/17 descr: IONOS SE ber.de origin: AS8560 mnt-by: AS8560-MNT created: 2024-02-01T10:20:15Z last-modified: 2024-02-01T10:20:15Z source: RIPE # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 6 threat reports