IOC Radar
IPMediumSignal 40/100

93.95.230.165

Location
IcelandIceland
Reykjavik, Hofudborgarsvaedi
ASN
AS44925
The 1984 ehf
First Seen
Apr 12, 2023
Last Seen
Jun 5, 2026
Apr 12
First Seen
1158d ago
Jun 5
Last Seen
8d ago
25
Reports
source reports
40%
Confidence
medium
Found in 25 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryISIceland
RegionReykjavik, Hofudborgarsvaedi
ASNAS44925
OrganizationThe 1984 ehf

IP Category

Proxy
Proxy server

Feed Intelligence Summary

25 reports40% confidence
25
Source reports
40%
Confidence score
Category tags
access controlaccount compromiseactive scanactive scanningauto-generated securitybotnetbotnet activitybrute forcebrute force attackcloud infrastructurecloud infrastructure attackcloud servicescommand and controlcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredecoy systemdistributed attacksexit nodeexploitation activityicelandidentity & access exploitationinfrastructure acquisitionreconnaissanceinjection activityismalicious softwaremalwaremalware distributionmanualnetworknetwork scanningnetwork trafficpassword attacksphishingphishing attackprocess injectionproxyreconnaissanceresearchedresource hijackingscannerscannerssecurity policysocial engineeringspamssh attackt1016t1055t1071t1071.001t1071.002t1071.004t1078t1090t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1572t1587.001t1588t1590.001t1595.001t1595.002t1595.003threat intelligencethreat preventiontortor activitytor exit nodetor networktor node

Activity Timeline

1 total obs
Jun 5Jun 5

Threat Activity Heatmap

· Peak: 2026-06-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
40
SIGNAL
Signal Score
40%
Confidence
25
Reports
First seenApr 12, 2023
Last seenJun 5, 2026
GeolocationIS
CountryIceland
LocationReykjavik, Hofudborgarsvaedi
ASNAS44925
OrgThe 1984 ehf
Coords65.0000, -18.0000
Proxy

VirusTotal

Not checked

WHOIS

description
Imported indicator
raw
inetnum: 93.95.227.0 - 93.95.230.255 netname: THE-1984-VPS1-NET descr: VPS1-NET country: IS admin-c: MI1311-RIPE tech-c: MI1311-RIPE status: ASSIGNED PA mnt-by: MNT-SIGGI-1984 mnt-lower: MNT-SIGGI-1984 mnt-routes: MNT-SIGGI-1984 created: 2011-02-09T14:29:29Z last-modified: 2023-07-27T10:19:27Z source: RIPE person: Mordur Aslaugarson address: 1984 ehf address: Austurstraeti 12 address: 101 Reykjavik address: Iceland phone: +354 546 1984 nic-hdl: MI1311-RIPE mnt-by: MNT-1984 created: 2006-10-04T14:23:08Z last-modified: 2019-11-13T11:12:41Z source: RIPE # Filtered route: 93.95.224.0/21 descr: The 1984 ehf Autonomous System origin: AS44925 mnt-by: MNT-1984 created: 2008-05-05T12:05:58Z last-modified: 2008-05-05T12:05:58Z source: RIPE
references
https://check.torproject.org/torbulkexitlist, https://jamesbrine.com.au/vultrwarsaw-ssh-bruteforce-ip-list-2023-08-27/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 8 days ago
Appeared in 25 threat reports