IOC Radar
IPMediumSignal 68/100

94.158.246.194

Location
Moldova, Republic ofMoldova, Republic of
Chisinau, CU
ASN
AS39798
MivoCloud SRL
First Seen
Apr 12, 2026
Last Seen
May 5, 2026
Apr 12
First Seen
56d ago
May 5
Last Seen
33d ago
7
Reports
source reports
68%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryMDMoldova, Republic of
RegionChisinau, CU
ASNAS39798
OrganizationMivoCloud SRL

Feed Intelligence Summary

7 reports68% confidence
7
Source reports
68%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbrute forcebrute force attackerbrute-forcedigital oceanhackingindicatormoldova, republic ofnetworkportscanreconnaissanceresearchedscannerscannersservice scant1595.001t1595.002t1595.003

Activity Timeline

1 total obs
May 5May 5

Threat Activity Heatmap

· Peak: 2026-05-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
7
Reports
First seenApr 12, 2026
Last seenMay 5, 2026
GeolocationMD
CountryMoldova, Republic of
LocationChisinau, CU
ASNAS39798
OrgMivoCloud SRL
Coords47.0042, 28.8574

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean London (UK) honeypot
references
https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 1 month ago
Appeared in 7 threat reports