IOC Radar
IPMediumSignal 100/100

87.106.102.72

Location
GermanyGermany
City of Westminster, Hesse
ASN
AS8560
IONOS SE
First Seen
Feb 26, 2025
Last Seen
Feb 15, 2026
Feb 26
First Seen
473d ago
Feb 15
Last Seen
118d ago
13
Reports
source reports
99%
Confidence
medium
2/91
VirusTotal
detections
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

21 techniques

Network Information

CountryDEGermany
RegionCity of Westminster, Hesse
ASNAS8560
OrganizationIONOS SE

Feed Intelligence Summary

13 reports99% confidence
13
Source reports
99%
Confidence score
Category tags
abuseactive scanningattackauthentication attacksauthentication failureautomated attacksbotnetbrute forcebrute force attackbrute-forccommand and controlcommunication protocolcowrie honeypotcredential accesscredential stuffingctadata exfiltrationdedecoy systemdistributed attackseuropeftp brute forcegbgermanyindicatorinfolog analysismalicious activitymalicious softwaremalwarenetworknetwork intrusionnetwork scanningnetwork securitynoticepassword attacksprocess injectionreconnaissanceresearchedscanscannersecurity operationsssh attackssh monitoringt1040t1046t1055t1059t1059.004t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat intelligenceunauthorized access attemptsunited kingdomunited kingdom of great britain and northern irelandvoip

Activity Timeline

1 total obs
Feb 15Feb 15

Threat Activity Heatmap

· Peak: 2026-02-15
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
13
Reports
First seenFeb 26, 2025
Last seenFeb 15, 2026
GeolocationDE
CountryGermany
LocationCity of Westminster, Hesse
ASNAS8560
OrgIONOS SE
Coords51.5081, -0.1278

VirusTotal

2/ 91vendors flagged
2% detection rateJun 8, 2026

WHOIS

description
Banned by Fail2Ban [sshd]
raw
inetnum: 87.106.100.0 - 87.106.103.255 netname: gb-wtr-ionos-cloud-bhx1 descr: IONOS SE country: GB admin-c: IPAD-RIPE tech-c: IPOP-RIPE status: ASSIGNED PA mnt-by: AS8560-MNT created: 2025-01-16T09:25:43Z last-modified: 2025-06-03T16:17:36Z source: RIPE role: IP Administration address: IONOS SE admin-c: JR2342-RIPE admin-c: SH15342-RIPE tech-c: JR2342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPAD-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-20T17:24:09Z last-modified: 2024-08-06T14:19:45Z source: RIPE # Filtered role: IP Operations address: IONOS SE admin-c: JR2342-RIPE admin-c: SH15342-RIPE tech-c: JR2342-RIPE tech-c: SH15342-RIPE mnt-ref: AS8560-MNT nic-hdl: IPOP-RIPE abuse-mailbox: [email protected] mnt-by: AS8560-MNT created: 2009-05-28T16:25:04Z last-modified: 2024-08-06T14:19:08Z source: RIPE # Filtered route: 87.106.100.0/22 descr: IONOS SE origin: AS8560 mnt-by: AS8560-MNT created: 2025-01-16T09:25:43Z last-modified: 2025-01-16T09:25:43Z source: RIPE # Filtered

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 13 threat reports