IOC Radar
IPMediumSignal 86/100

94.156.232.116

Location
GermanyGermany
Frankfurt am Main, Hesse
ASN
AS215730
H2nexus LTD
First Seen
Sep 9, 2025
Last Seen
Jun 7, 2026
Sep 9
First Seen
271d ago
Jun 7
Last Seen
today
21
Reports
source reports
86%
Confidence
medium
Found in 21 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
86%
Signal Score
86 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

11 techniques

Network Information

CountryDEGermany
RegionFrankfurt am Main, Hesse
ASNAS215730
OrganizationH2nexus LTD

Feed Intelligence Summary

21 reports86% confidence
21
Source reports
86%
Confidence score
Category tags
abuseabusech-threatfox-c2cactive scanaptbad reputationbad web botblocklist_allbotnetbotnet activitybrute forcebrute-forcebruteforcec2command and controlcompromised hostsdata exfiltrationddosddos attackdedefensedhcpdistributed attackselasticsearcheuropeexploitexploitation activityexploited hostfinance and insurancefraudftpftp brute-forcegermanyhackingimapindicatorinfected systemsinjection activityiot securityiot targetedipqsldapmalicious ipmalicious ipsmalicious softwaremalwaremediamiraimssqlnetworknetwork trafficntporaclephishingping of deathpostgresprocess injectionransomwarerdpredisresearchedretail tradescams & fraudscanscannersmbsnmpsocks5socradar honeypotspamsql injectionsshssh attackt1055t1059t1071t1071.001t1105t1486t1496t1499.002t1499.003t1565t1573targeting databasetcptelecommunicationstelnetthreat actorthreatfox iocstpotvncvulnerability scanvulnerability-exploitationvultrweb app attackweb attackweb spam

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
1
Minimal
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
86%
Confidence
21
Reports
First seenSep 9, 2025
Last seenJun 7, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, Hesse
ASNAS215730
OrgH2nexus LTD
Coords50.1109, 8.6821

VirusTotal

Not checked

WHOIS

description
Recent abusive IP addresses detected across the IPQS Threat Network for a variety of industries. Mix of worldwide IPs.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 9 months ago · Last seen today
Appeared in 21 threat reports