IOC Radar
IPMediumSignal 58/100

89.125.18.152

Location
NetherlandsNetherlands
Amsterdam, Leinster
ASN
AS57043
Irish Broadband
First Seen
Apr 15, 2026
Last Seen
Apr 23, 2026
Apr 15
First Seen
57d ago
Apr 23
Last Seen
49d ago
6
Reports
source reports
58%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
58%
Signal Score
58 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

1 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, Leinster
ASNAS57043
OrganizationIrish Broadband

Feed Intelligence Summary

6 reports58% confidence
6
Source reports
58%
Confidence score
Category tags
active scanattackbrute forcecredential accesscredential stuffingeuropeexploitation activityidentity & access exploitationirelandmalicious activitymalwarenetherlandsnetworkproxyresearchedssh attackt1110.002threat actortor node

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
58
SIGNAL
Signal Score
58%
Confidence
6
Reports
First seenApr 15, 2026
Last seenApr 23, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, Leinster
ASNAS57043
OrgIrish Broadband
Coords53.3498, -6.2603

VirusTotal

Not checked

WHOIS

raw
inetnum: 89.125.18.0 - 89.125.18.255 netname: Snowd_Security country: NL admin-c: GA13230-RIPE tech-c: GA13230-RIPE status: ASSIGNED PA abuse-c: ACRO45564-RIPE org: ORG-SSO10-RIPE created: 2026-04-08T18:06:48Z last-modified: 2026-04-08T18:06:48Z source: RIPE mnt-by: interlir-mnt organisation: ORG-SSO10-RIPE org-name: Snowd Security OU org-type: OTHER address: Punane tn 56, Tallinn, Harju, 13619 abuse-c: ACRO56939-RIPE mnt-ref: interlir-mnt mnt-by: lir-ee-snowd-1-MNT created: 2024-06-24T13:16:23Z last-modified: 2025-01-20T13:40:13Z source: RIPE # Filtered role: General address: ESTONIA address: Tallinn address: 13619 address: Punane tn 56 Harju maakond Lasnam�e linnaosa phone: +3728801981 nic-hdl: GA13230-RIPE mnt-by: lir-ee-snowd-1-MNT created: 2024-07-12T10:20:16Z last-modified: 2024-07-12T10:20:17Z source: RIPE # Filtered route: 89.125.18.0/24 origin: AS57043 created: 2026-04-08T18:07:02Z last-modified: 2026-04-08T18:07:02Z source: RIPE mnt-by: interlir-mnt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 6 threat reports