IOC Radar
IPMediumSignal 71/100

95.129.234.24

Location
Russian FederationRussian Federation
Rostov-on-Don, Rostov
ASN
AS57724
Ddos-guard LTD
First Seen
Feb 21, 2025
Last Seen
May 19, 2026
Feb 21
First Seen
480d ago
May 19
Last Seen
28d ago
12
Reports
source reports
71%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

19 techniques

Network Information

CountryRURussian Federation
RegionRostov-on-Don, Rostov
ASNAS57724
OrganizationDdos-guard LTD

Feed Intelligence Summary

12 reports71% confidence
12
Source reports
71%
Confidence score
Category tags
active scanaptasyncratattackbotnetbotnet activitybrute forcec2censyscommand & controlcommand and controlcredential harvestingcredential stuffingdata encryptiondata exfiltrationdata store exposureddosddos-guarddistributed attacksencryptioneurope/asiaexploitation activityextortionfraudidentity & access exploitationindicatoringress tool transferinjection activitymalicious activitymalicious linksmalicious softwaremalwaremanualnetworknjratphishingphishing attackprocess injectionransomwareratremote accessresearchedrurussiarussian federationscamscams & fraudself-signedsocial engineeringsystem disruptiont1041t1055t1059t1071t1071.001t1078t1105t1204.001t1204.002t1486t1490t1496t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003threat actortor nodetrojan malwareweb security

Activity Timeline

1 total obs
May 19May 19

Threat Activity Heatmap

· Peak: 2026-05-19
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
12
Reports
First seenFeb 21, 2025
Last seenMay 19, 2026
GeolocationRU
CountryRussian Federation
LocationRostov-on-Don, Rostov
ASNAS57724
OrgDdos-guard LTD
Coords47.2357, 39.7015

VirusTotal

Not checked

WHOIS

description
ip:port combination that is used for botnet Command&control (C&C)
raw
inetnum: 95.129.234.0 - 95.129.234.255 netname: DDOS-GUARD-NET descr: DDOS-GUARD LTD country: RU admin-c: DS19051-RIPE tech-c: DS19051-RIPE status: ASSIGNED PA mnt-by: DDOS-GUARD-MNT3 mnt-by: DDOS-GUARD-5-MNT mnt-routes: DDOS-GUARD-6-MNT mnt-routes: DDOS-GUARD-7-MNT created: 2024-07-02T03:55:32Z last-modified: 2026-01-30T12:23:25Z source: RIPE person: Dmitry Shmidt address: ul. Maksima Gor'kogo, d. 276, floor 5 address: 344019 address: Rostov-on-Don address: RUSSIAN FEDERATION phone: +74952150387 nic-hdl: DS19051-RIPE mnt-by: DDOS-GUARD-MNT3 created: 2016-08-01T10:56:50Z last-modified: 2020-09-22T10:50:13Z source: RIPE route: 95.129.234.0/24 descr: DDOS-GUARD LTD origin: AS57724 mnt-routes: DDOS-GUARD-MNT3 mnt-by: DDOS-GUARD-MNT3 mnt-by: DDOS-GUARD-5-MNT created: 2024-07-02T03:55:32Z last-modified: 2024-07-02T03:55:32Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 28 days ago
Appeared in 12 threat reports