IOC Radar
IPMediumSignal 34/100

89.132.80.241

Location
HungaryHungary
Budapest, BZ
ASN
AS21334
One Hungary Ltd
First Seen
Dec 9, 2024
Last Seen
Apr 7, 2026
Dec 9
First Seen
552d ago
Apr 7
Last Seen
67d ago
11
Reports
source reports
34%
Confidence
medium
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

27 techniques

Network Information

CountryHUHungary
RegionBudapest, BZ
ASNAS21334
OrganizationOne Hungary Ltd

Feed Intelligence Summary

11 reports34% confidence
11
Source reports
34%
Confidence score
Category tags
abuseactive scanactive scanningattackbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcowriecowrie honeypotcowrie honeypot datacredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredecoy systemdistributed attackseuropeexploitation activitygithubhuhungaryidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activitymalicious activitymalicious softwaremalwaremanualmysqlnetworknetwork probingnetwork scanningnetwork securitynetwork service scanningnginxpassword attacksphishingphishing attackprocess injectionprotocol exploitationpythonreconnaissanceresearchedscannerserverservice scansftpsftp attacksftp exploit attemptslugsocial engineeringsshssh attackssh monitoringsurface webt1021t1021.004t1040t1041t1055t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp/23telecommunicationstelnet threatthreat actortor nodeunauthorized access attempt

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address identified as 89.132.80.241, carries a significant risk score of 33.9 and is not whitelisted, indicating its likely involvement in malicious cyber activities. Its presence is linked to a variety of attack patterns, including unauthorized access attempts, data exfiltration, ransomware, and denial-of-service attacks, posing a substantial threat to organizational integrity and data security. If this IOC interacts with the network, it could facilit…

Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
11
Reports
First seenDec 9, 2024
Last seenApr 7, 2026
GeolocationHU
CountryHungary
LocationBudapest, BZ
ASNAS21334
OrgOne Hungary Ltd
Coords48.2513, 20.6304

VirusTotal

Not checked

WHOIS

description
2025-02-19T15:21:17.506Z Honeypot : Cowrie : Source: 89.132.80.241 Data: New connection: 89.132.80.241:4816 (192.168.80.2:23) [session: 6919e983c5d2]
raw
inetnum: 89.132.0.0 - 89.135.255.255 netname: HU-ONE-20060117 country: HU org: ORG-VCL1-RIPE admin-c: HVH233-RIPE tech-c: HVH233-RIPE status: ALLOCATED PA mnt-by: RIPE-NCC-HM-MNT mnt-by: ONE-HU-MNT mnt-routes: VODAFONE-HU-MNT created: 2006-01-17T17:16:32Z last-modified: 2025-01-03T09:00:05Z source: RIPE # Filtered organisation: ORG-VCL1-RIPE org-name: One Hungary Ltd. country: HU org-type: LIR address: P2P address: H-1519 address: Budapest Pf. 596 address: HUNGARY phone: +36702883288 abuse-c: AR15492-RIPE mnt-ref: ONE-HU-MNT mnt-ref: RIPE-NCC-HM-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: ONE-HU-MNT tech-c: HVH233-RIPE admin-c: HVH233-RIPE created: 2004-04-17T11:26:40Z last-modified: 2025-01-01T02:15:27Z source: RIPE # Filtered role: Hostmaster One Hungary address: One Hungary Ltd. address: Boldizs�r str 2. address: H-1112 Budapest address: Hungary tech-c: PK2720-RIPE tech-c: AS1007-RIPE tech-c: TD6758-RIPE tech-c: AB41712-RIPE tech-c: GE2196-RIPE tech-c: AG27400-RIPE tech-c: GP17558-RIPE admin-c: PK2720-RIPE admin-c: AS1007-RIPE admin-c: AB41712-RIPE admin-c: GE2196-RIPE admin-c: AG27400-RIPE admin-c: TD6758-RIPE nic-hdl: HVH233-RIPE mnt-by: VODAFONE-HU-MNT created: 2021-05-31T09:24:28Z last-modified: 2025-01-01T20:00:33Z source: RIPE # Filtered route: 89.132.0.0/15 origin: AS21334 mnt-by: VODAFONE-HU-MNT created: 2021-04-28T12:52:17Z last-modified: 2021-04-28T12:52:17Z source: RIPE
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 11 threat reports