IPMediumSignal 48/100
94.232.11.178
Location
Russian FederationMoscow, Moscow
ASN
AS31163
PJSC MegaFon
First Seen
Aug 26, 2020
Last Seen
Jun 4, 2026
Found in 34 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
48%
Signal Score
48 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryRussian Federation
Russian FederationRegionMoscow, Moscow
ASNAS31163
OrganizationPJSC MegaFon
IP Category
⟲
Proxy
Proxy server
⊕
VPN
VPN exit node
Feed Intelligence Summary
34 reports48% confidence
34
Source reports
48%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackbad reputationbad web botbotnet activitybotnet activity detectedbrute forcebrute force attackbrute force attackerbrute force attacksc2 communicationcommand & controlcompromised hostscredential accesscredential harvestingcredential stuffingddosddos attackdenial of serviceeurope/asiaexploit attemptsexploitation activityexploited hostfraud ordersidentity & access exploitationinfrastructure acquisitionreconnaissancemalicious activitymalwaremalware distributionmanualnetworknetwork intrusionnetwork scanningopen proxypassword attacksphishingphishing attackproxyreconnaissanceresearchedrurussiascams & fraudscannersecurity policysocial engineeringspamssh attackt1003t1071t1078t1110.001t1110.002t1110.003t1110.004t1190t1203t1497t1499.001t1566.001t1566.002t1566.003t1587.001t1590.001t1595.001t1595.002t1595.003threat actorthreat preventiontor nodevpnweb application attackweb exploitationweb spam
Activity Timeline
Jun 4Jun 4
Threat Activity Heatmap
· Peak: 2026-06-04LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
48
SIGNAL
Signal Score
48%
Confidence
34
Reports
First seenAug 26, 2020
Last seenJun 4, 2026
GeolocationRU
CountryRussian Federation
LocationMoscow, Moscow
ASNAS31163
OrgPJSC MegaFon
Coords55.7738, 37.6058
ProxyVPN
VirusTotal
Not checked
WHOIS
- description
- proxy-proxy_http search result.
- raw
- inetnum: 94.232.8.0 - 94.232.15.255 netname: RU-MEGAFON country: RU org: ORG-OM1-RIPE admin-c: MFON-RIPE tech-c: MFON-RIPE status: ASSIGNED PI mnt-by: RIPE-NCC-END-MNT mnt-by: MEGAFON-RIPE-MNT mnt-lower: TI-MNT created: 2008-09-23T15:06:26Z last-modified: 2022-11-25T10:23:06Z source: RIPE # Filtered organisation: ORG-OM1-RIPE org-name: PJSC MegaFon country: RU org-type: LIR address: 41, Oruzheyniy lane address: 127006 address: Moscow address: RUSSIAN FEDERATION phone: +74955077777 phone: +74959801970 fax-no: +74959801939 fax-no: +74959801949 admin-c: MFON-RIPE tech-c: MFON-RIPE abuse-c: MFON-RIPE mnt-by: RIPE-NCC-HM-MNT mnt-by: MEGAFON-RIPE-MNT mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MEGAFON-RIPE-MNT created: 2004-04-17T11:55:06Z last-modified: 2024-05-27T05:04:02Z source: RIPE # Filtered role: MegaFon PJSC - Internet Service Network Operation Center address: PJSC "MegaFon" address: 41, Oruzheyniy lane address: Moscow, 127006 address: Russian Federation abuse-mailbox: [email protected] remarks: ----------------------------------------------------------- remarks: Customer Service Center, is available at 24 x 7 remarks: Phone: +8(800)5500500 remarks: ----------------------------------------------------------- remarks: Technical questions: [email protected] remarks: Routing and peering: [email protected] remarks: ----------------------------------------------------------- remarks: SPAM and Network security: [email protected] remarks: Please use [email protected] e-mail address for complaints. remarks: All messages to any other our address, relative to SPAM remarks: or security issues, will not be concerned. remarks: ----------------------------------------------------------- remarks: Information: http://www.megafon.ru remarks: ----------------------------------------------------------- admin-c: PP18881-RIPE admin-c: AI5775-RIPE nic-hdl: MFON-RIPE mnt-by: MEGAFON-RIPE-MNT created: 2013-03-27T07:19:58Z last-modified: 2025-02-05T05:45:20Z source: RIPE # Filtered route: 94.232.11.0/24 descr: PJSC MegaFon prefix descr: Voronezh region origin: AS31163 mnt-by: MF-KVK-MNT mnt-by: MEGAFON-AUTO-MNT mnt-by: MEGAFON-EAST-MNT mnt-by: TI-MNT created: 2025-04-16T10:26:33Z last-modified: 2025-04-16T10:26:47Z source: RIPE
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 5 years ago · Last seen 19 days ago
Appeared in 34 threat reports