IOC Radar
IPMediumSignal 35/100

92.118.39.202

Location
NetherlandsNetherlands
Amsterdam, North Holland
ASN
AS47890
Pptechnology Limited
First Seen
May 30, 2024
Last Seen
Jun 18, 2026
May 30
First Seen
757d ago
Jun 18
Last Seen
8d ago
26
Reports
source reports
35%
Confidence
medium
Found in 26 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

34 techniques

Network Information

CountryNLNetherlands
RegionAmsterdam, North Holland
ASNAS47890
OrganizationPptechnology Limited

Feed Intelligence Summary

26 reports35% confidence
26
Source reports
35%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapacheapache attackerapplication layer protocolaptattackauto-generated securitybad reputationbad web botblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute-forcebruteforcec2 communicationcivil servicescommand & controlcommand and controlcommunication protocolcredential accesscredential harvestingcredential stuffingctadata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attackddos attack preparationdecoy systemdenial of servicedistributed attacksdmzhostdnsdns attackdovecotencryptioneuropeexploitexploitationexploitation activityexploited hostftpgovernment technologyhackinghttp scannerhttpsidentity & access exploitationimapimap attackindicatorinformation technologyinfrastructure acquisitionreconnaissanceinjection activityinjection attacksircit infrastructurekfsensor honeypotlateral movementloginmailcowmalicious activitymalwaremalware capturemalware distributionmanualnetherlandsnetworknetwork probingnetwork scanningnetwork securitynetwork service scanningnorth americapassword attacksphishingphishing attackprotocol exploitationpublic administrationpublic infrastructurepublic policyreconnaissanceregulatory agenciesremote accessremote servicesremote system discoveryresearchedroromaniasaasscanscannersecurity policyservice scansmtpsmtp attackersocial engineeringsoftware developmentspamsshssh attacksystem discoveryt1018t1021t1021.001t1040t1046t1053t1059t1059.003t1071t1071.001t1076t1078t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1566.001t1566.002t1566.003t1573t1587.001t1590.001t1595.001t1595.002t1595.003tcp/23telecommunicationstelnet threatthreat actorthreat intelligencethreat preventiontor nodetpotunited statesvoipvulnerability scanvulnerability-exploitationweb app attackweb application attackweb exploitationweb scannerweb spamweb traffic

Activity Timeline

1 total obs
Jun 18Jun 18

Threat Activity Heatmap

· Peak: 2026-06-18
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
26
Reports
First seenMay 30, 2024
Last seenJun 18, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, North Holland
ASNAS47890
OrgPptechnology Limited
Coords52.3676, 4.9041

VirusTotal

Not checked

WHOIS

description
Brute-force source · part of 20-IP coordinated attack

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 8 days ago
Appeared in 26 threat reports