IPMediumSignal 33/100
92.118.39.205
Location
NetherlandsAmsterdam, North Holland
ASN
AS47890
Pptechnology Limited
First Seen
May 30, 2024
Last Seen
Jun 18, 2026
Found in 25 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryNetherlands
NetherlandsRegionAmsterdam, North Holland
ASNAS47890
OrganizationPptechnology Limited
Feed Intelligence Summary
25 reports33% confidence
25
Source reports
33%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningapplication layer protocolaptattackaustraliaauthentication abuseauto-generated securitybad reputationbad web botblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute force attemptsbrute-forcebruteforcec2 communicationcivil servicescommand & controlcommand and controlcommon credential attackcommunication protocolcredential accesscredential harvestingcredential stuffingctacve exploitation attemptdata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attackddos attack preparationddos probedecoy systemdenial of servicedistributed attacksdmzhostdnsdns attackdovecotencryptionenumerationeuropeexploitexploitationexploitation activityexploited hostextortionftpftp brute forcegovernment technologyhackinghttp brute forcehttp probinghttp scannerhttp scanninghttpsidentity & access exploitationimapimap attackindicatorinformation technologyinfrastructure acquisitionreconnaissanceinitial accessinjection activityinjection attacksintrusion detectionipv4ircit infrastructurelateral movementlogin attemptsmailcowmalicious activitymalicious softwaremalwaremalware distributionmalware download attemptmanualmysql brute forcenetherlandsnetworknetwork attacksnetwork intrusionnetwork intrusion attemptsnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnorth americaoceaniapassword attacksphishingphishing attackprocess injectionprotocol exploitationpublic administrationpublic infrastructurepublic policyransomwarereconnaissanceregulatory agenciesremote accessremote servicesremote system discoveryresearchedroromaniasaasscanscannerscheduled taskscripting attackssecurity policyservice scanshellshocksmb probingsmtpsmtp attackersmtp brute forcesmtp probingsocial engineeringsoftware developmentspamsql injection attemptsql injection attemptssshssh attacksystem discoverysystem disruptiont1018t1021t1021.001t1021.002t1021.003t1021.006t1040t1046t1053t1053.005t1055t1059t1059.001t1059.003t1059.004t1059.007t1068t1071t1071.001t1076t1077t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1136.001t1187t1190t1199t1203t1486t1490t1496t1497t1499.001t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1573t1587.001t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003targeting databasetcp scanningtelecommunicationstelnet threattftp brute forcethreat actorthreat intelligencethreat preventiontor nodetpotunauthorized access attemptunited statesunknown threat actorvalid accountsvoipvulnerabilityvulnerability scanvulnerability-exploitationweb app attackweb application attackweb application scanningweb attackweb exploitationweb spamweb traffic
Activity Timeline
Jun 18Jun 18
Threat Activity Heatmap
· Peak: 2026-06-18LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
25
Reports
First seenMay 30, 2024
Last seenJun 18, 2026
GeolocationNL
CountryNetherlands
LocationAmsterdam, North Holland
ASNAS47890
OrgPptechnology Limited
Coords52.3676, 4.9041
VirusTotal
Not checked
WHOIS
- description
- Brute-force source · part of 20-IP coordinated attack
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 5 days ago
Appeared in 25 threat reports