IOC Radar
IPMediumSignal 56/100

94.56.34.139

Location
United Arab EmiratesUnited Arab Emirates
Dubai, Dubai
ASN
AS5384
EMIRATES TELECOMMUNICATIONS GROUP COMPANY (ETISALAT GROUP) PJSC
First Seen
Feb 12, 2026
Last Seen
May 8, 2026
Feb 12
First Seen
130d ago
May 8
Last Seen
46d ago
20
Reports
source reports
56%
Confidence
medium
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
56%
Signal Score
56 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

37 techniques

Network Information

CountryAEUnited Arab Emirates
RegionDubai, Dubai
ASNAS5384
OrganizationEMIRATES TELECOMMUNICATIONS GROUP COMPANY (ETISALAT GROUP) PJSC

Feed Intelligence Summary

20 reports56% confidence
20
Source reports
56%
Confidence score
Category tags
abuseaccount compromiseactive scanactive scanningaeaptasiaattackattacker ipattacker-ipauthenticationautomated attackautomated attack attemptsbad web botblocklist_allbotnetbrute forcebrute force attackbrute force attackercanadacisco devicecisco exploitation attemptcisco exploitation attemptscloud infrastructurecloud infrastructure attackcloud providercloud servicescode executioncode injectioncommand and controlcommand executioncommunication protocolcompromised systemcowrie datacowrie honeypotcredential accesscredential guessingcredential stuffingdata exfiltrationdatabase securityddos attackdecoy systemdenial of servicedevice managementdigital oceandistributed attacksenterprise networkingeuropeexploitation activityexploited hostfranceftpftp brute forcehackinghttp brute forcehttp scannerhttpsimapimap attackindiaindicatorinitial accessinjection activityinjection attacksinternet-scanninginternet-wide monitoringiot targetedipv4ipv4-scanninglogin attemptmalicious activitymalicious softwaremalwaremass-scanningnetworknetwork attacksnetwork infrastructurenetwork probingnetwork protocolnetwork scanningnetwork securitynorth americaopenctipassword attackpassword attackspre-attackprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedresource hijackingscannerscannersscanning activitysecurity operationssentrypeer activitysentrypeer botnetservice enumerationsftp attacksip brute forcesip scanningsmb brute forcesmtpsmtp attackersocradar honeypotsql injectionssh attackssh monitoringt1018t1021t1021.001t1040t1041t1046t1055t1059t1059.003t1059.004t1071t1071.001t1076t1078t1087t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1565t1589t1590t1592t1595t1595.001t1595.002t1595.003targeting databasetcp protocoltcp scantelecommunicationstelnet threatthreat actorthreat intelligencetorontoudp scanvoidtrapvoipvoip attackvulnerability-scanningweb app attackweb application attackweb exploitationweb traffic

Activity Timeline

1 total obs
May 8May 8

Threat Activity Heatmap

· Peak: 2026-05-08
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
56
SIGNAL
Signal Score
56%
Confidence
20
Reports
First seenFeb 12, 2026
Last seenMay 8, 2026
GeolocationAE
CountryUnited Arab Emirates
LocationDubai, Dubai
ASNAS5384
OrgEMIRATES TELECOMMUNICATIONS GROUP COMPANY (ETISALAT GROUP) PJSC
Coords25.0734, 55.2979

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 1 month ago
Appeared in 20 threat reports