IOC Radar
IPMediumSignal 68/100

91.215.85.183

Location
Russian FederationRussian Federation
St Petersburg, St.-Petersburg
ASN
AS200593
Prospero OOO
First Seen
Jan 12, 2023
Last Seen
Jun 15, 2026
Jan 12
First Seen
1262d ago
Jun 15
Last Seen
12d ago
27
Reports
source reports
68%
Confidence
medium
Found in 27 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

38 techniques

Network Information

CountryRURussian Federation
RegionSt Petersburg, St.-Petersburg
ASNAS200593
OrganizationProspero OOO

Feed Intelligence Summary

27 reports68% confidence
27
Source reports
68%
Confidence score
Category tags
abuseactive scanningagent teslaalienvault_ransomwaream utcanydeskaptattackautomotive manufacturingbabukbad reputationbitwise spiderblacktailbotnetbrute forcebuhtibulletproof hosting infrastructurec servercertcobaltcobalt strikecobaltstrikecommandcommand and controlcommand executioncommentconsumer goodsconticookiecredential accesscredential harvestingcredential stuffingda6ah3data encryptiondata exfiltrationdistributed attackselectronics manufacturingemailemotetenergyenergy distributionenterprise securityet malwareeurope/asiaexfiltrationextortionfeedfinance and insurancefraudftp brute forcegoceqc6skgolanghashhavochotspothttp brute forcehuntericedidicedid dllimpactindicatorindustrial automationindustrial iotindustrial productioninformation technologyinfrastructure abuseinfrastructure acquisitionreconnaissanceingress tool transferinsikt groupiobitiocsit infrastructurelateral movementlinuxlockbitlsassmalicious activitymalicious downloadmalicious powershell activitymalicious softwaremalwaremalware distributionmanualmanufacturing technologymarkmediametasploitmeterpretermodelnanocore ratnetscannetworknetwork analysisnetwork reconnaissancenetwork scanningnokoyawaoil & gasonenote fileopenoperating systempassword attackpatch managementphishingphishing attackphonepower generationpower systemsprocess injectionprocess manufacturingquality controlransomwareransomware feedreconnaissanceremote accessremote servicesrenewable energyresearchedretail tradernuarbvf urlrussiascams & fraudscripting attackssentinel mispserviceshellsliversocial engineeringsoftware developmentsoftware vulnerabilitiesspamssh attackstrike beaconstrongsupply chain managementsyn scansyrphidsystem disruptiont1021.001t1046t1055t1059t1059.001t1069.001t1071.001t1076t1078t1086t1105t1110t1110.002t1190t1204.002t1486t1490t1496t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1569.002t1583t1583.001t1583.006t1587.001t1588t1588.006t1590.001t1595t1595.001t1595.002t1595.003tcp scanteamtechthreat actorturkeytwittertwitter pageudp scanviperwordz5brjsogj789

Activity Timeline

1 total obs
Jun 15Jun 15

Threat Activity Heatmap

· Peak: 2026-06-15
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
27
Reports
First seenJan 12, 2023
Last seenJun 15, 2026
GeolocationRU
CountryRussian Federation
LocationSt Petersburg, St.-Petersburg
ASNAS200593
OrgProspero OOO
Coords59.8944, 30.2642

VirusTotal

Not checked

WHOIS

description
CC=RU ASN=AS34665 petersburg internet network ltd.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 12 days ago
Appeared in 27 threat reports