IOC Radar
IPMediumSignal 58/100

93.123.109.121

Location
AndorraAndorra
Andorra la Vella, Andorra la Vella
ASN
AS48090
Techoff SRV Limited
First Seen
Apr 1, 2025
Last Seen
Jun 7, 2026
Apr 1
First Seen
450d ago
Jun 7
Last Seen
19d ago
24
Reports
source reports
58%
Confidence
medium
Found in 24 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
58%
Signal Score
58 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

45 techniques

Network Information

CountryADAndorra
RegionAndorra la Vella, Andorra la Vella
ASNAS48090
OrganizationTechoff SRV Limited

Feed Intelligence Summary

24 reports58% confidence
24
Source reports
58%
Confidence score
Category tags
abuseactive scanactive scanningadbadb protocolandorraandroid devicesapacheapache attackeraptattackaustraliaauthentication_bypassbad reputationbad web botblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute force attemptbrute force attemptsbrute-forcebulgariac&cc2 communicationcommand & controlcommand and controlcommand executioncommunication protocolcompromised hostcowriecowrie honeypotcowrie interactionscredential accesscredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdecoy systemdenial of servicedigital oceandionaea honeypotdionaea interactionsdistributed attacksdropperdropper activityeuropeexploitexploit targetingexploitationexploitation activityexploited hostfattfatt signaturesfinlandfranceftpftp brute forcegermanyhackinghoneynet connecthoneytrap honeypothoneytrap interactionshttp brute forcehttp probinghttp scanneridentity & access exploitationimapimap attackindicatorinjection activityinjection attacksiot exploitationiot securityiot targetedipv4ipv4_addresslateral movementlogin attemptlogin failuremailoney honeypotmailoney interactionsmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionmalware droppermobilemobile securitymobile threatnetherlandsnetworknetwork activitynetwork intrusionnetwork intrusion attemptnetwork intrusion attemptsnetwork intrusion detectionnetwork scanningnetwork securitynetwork_service_exploitationnlnorth americaoceaniap0fp0f signaturespassword attackpassword attacksphishingphishing attackphishing trappolandprocess injectionprotocol exploitationransomwarereconnaissanceremote accessremote servicesremote_accessresearchresearchedresource hijackingscannerscanner activityscannersscanning activitysensor-taggedsentrypeer botnetsentrypeer interactionsserver exploitationsmtpsmtp attackersmtp brute forcesmtp probingsocradar honeypotspamsshssh attackssh monitoringssh-brutesuricata alertst1003t1021t1021.001t1021.004t1040t1046t1047t1055t1059t1059.003t1059.004t1059.005t1064t1071t1071.001t1076t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1203t1204.002t1486t1496t1497t1497.001t1499.001t1499.002t1499.003t1505.004t1563t1565t1573t1573.001t1588.004t1595t1595.001t1595.002t1595.003tannertanner interactionstcp scantelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodetpotudp scanunauthorized accessunauthorized access attemptunited statesvoipvoip attackweb app attackweb application attackweb exploitationweb spamweb traffic

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
58
SIGNAL
Signal Score
58%
Confidence
24
Reports
First seenApr 1, 2025
Last seenJun 7, 2026
GeolocationAD
CountryAndorra
LocationAndorra la Vella, Andorra la Vella
ASNAS48090
OrgTechoff SRV Limited
Coords42.5063, 1.5218

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean London (UK) honeypot
raw
inetnum: 93.123.109.0 - 93.123.109.255 netname: TECHOFF_SRV_LIMITED descr: TECHOFF_SRV_LIMITED org: ORG-TSL73-RIPE country: AD admin-c: AD18161-RIPE tech-c: AD18161-RIPE mnt-domains: TECHOFF-MNT mnt-routes: TECHOFF-MNT status: ASSIGNED PA mnt-by: MNT-NETERRA created: 2025-02-24T11:41:37Z last-modified: 2025-02-24T11:41:37Z source: RIPE organisation: ORG-TSL73-RIPE org-name: TECHOFF SRV LIMITED country: GB org-type: OTHER address: 35 Firs Avenue, London N11 3NE abuse-c: AD18161-RIPE mnt-ref: TECHOFF-MNT mnt-ref: MNT-NETERRA mnt-by: TECHOFF-MNT created: 2024-11-20T13:01:40Z last-modified: 2024-11-26T15:22:33Z source: RIPE # Filtered role: ABUSE DEP address: 35 Firs Avenue, London N11 3NE abuse-mailbox: [email protected] nic-hdl: AD18161-RIPE mnt-by: TECHOFF-MNT created: 2024-11-20T13:00:28Z last-modified: 2024-11-21T09:45:52Z source: RIPE # Filtered route: 93.123.109.0/24 origin: AS48090 mnt-by: TECHOFF-MNT created: 2025-03-14T18:56:29Z last-modified: 2025-03-14T18:56:29Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 19 days ago
Appeared in 24 threat reports