IOC Radar
IPMediumSignal 88/100

95.23.88.143

Location
SpainSpain
Torrevieja, VC
ASN
AS12479
Jazztel Triple Play Services
First Seen
Jun 1, 2025
Last Seen
Feb 8, 2026
Jun 1
First Seen
389d ago
Feb 8
Last Seen
136d ago
12
Reports
source reports
88%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
88%
Signal Score
88 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

41 techniques

Network Information

CountryESSpain
RegionTorrevieja, VC
ASNAS12479
OrganizationJazztel Triple Play Services

Feed Intelligence Summary

12 reports88% confidence
12
Source reports
88%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackaustraliaauthentication attemptsblacklisted ipblock listbotnetbrute forcebrute force attackbrute force attemptc2china mobilecolumnscommand and controlcommunication protocolcommunication technologiescompany limitedcompromised hostcowrie honeypotcredential accesscredential stuffingdata exfiltrationdatabase attackddosddos attackddos attacksdecoy systemdenial of servicedionaea honeypotdistributed attackseuropeexfiltrationexploitexploit attemptsexploited hostexternal threatfattftp brute forcehackinghk abusehandlerhoneytrap honeypothong konghttp brute forcehttp scanningindicatorinternet of thingsintrusion detectioniociot botnetiot/ics attacklamplateral movementmailoney honeypotmalicious activitymalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemalware distributionmalware propagationmalware scanningmirai botnetmobile carriersmobile networksnetworknetwork attacksnetwork intrusionnetwork intrusion attemptsnetwork probingnetwork scannetwork scanningnetwork securitynetwork service scanningnetwork traffic analysisoceaniap0fpassword attackspgp signphishing attackphishing trapprocess injectionprotocol exploitationreconnaissanceremote accessremote loginremote servicesresearchedresource hijackingscanscannerscripting attackssecurity operationssecurity policysensor-taggedsentrypeer botnetsftp attacksmtp brute forcesmtp scanningsocradar honeypotspainsql injection attemptsssh attackssh monitoringt1005t1021t1021.001t1021.002t1040t1041t1046t1055t1059t1059.007t1071t1071.001t1076t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1203t1204.002t1210t1486t1496t1497t1499.001t1499.002t1499.003t1563t1565t1573t1588t1595t1595.001t1595.002t1595.003tannertcp protocoltelecom servicestelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontpotus abuseus nonevoip attackweb attackweb exploitation

Activity Timeline

1 total obs
Feb 8Feb 8

Threat Activity Heatmap

· Peak: 2026-02-08
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
88
SIGNAL
Signal Score
88%
Confidence
12
Reports
First seenJun 1, 2025
Last seenFeb 8, 2026
GeolocationES
CountrySpain
LocationTorrevieja, VC
ASNAS12479
OrgJazztel Triple Play Services
Coords37.9751, -0.6840

VirusTotal

Not checked

WHOIS

raw
inetnum: 95.23.0.0 - 95.23.255.255 netname: JAZZTEL-TRIPLEPLAY descr: Jazztel Triple Play Services country: ES admin-c: JAZZ3-RIPE tech-c: JAZZ3-RIPE status: ASSIGNED PA mnt-by: JAZZSEC mnt-domains: JAZZSEC created: 2010-05-17T06:26:58Z last-modified: 2010-05-17T06:26:58Z source: RIPE role: JAZZTEL RIPE address: Parque Empresarial La Finca address: Edificio 9 address: Paseo del Club Deportivo, 1 address: 28223 Pozuelo de Alarcon address: Madrid, Spain phone: +34 91 183 9000 fax-no: +34 91 291 7570 abuse-mailbox: [email protected] admin-c: LAA96-RIPE admin-c: MVM79-RIPE tech-c: LAA96-RIPE tech-c: MVM79-RIPE nic-hdl: JAZZ3-RIPE remarks: trouble: ************************************************** remarks: trouble: For SPAM, Net Abuse, Intrusion and Security Issues remarks: trouble: remarks: trouble: Please Contact: [email protected] remarks: trouble: remarks: trouble: All messages to any other our e-mails, related to remarks: trouble: these issues will be ignored remarks: trouble: ************************************************** mnt-by: JAZZSEC mnt-by: UNI2-MNT created: 2002-06-12T09:29:12Z last-modified: 2024-01-22T14:06:20Z source: RIPE # Filtered route: 95.23.0.0/16 descr: ORANGE SPAIN origin: AS12479 remarks: **** SPAM, Net Abuse and Security-Issues **** remarks: **** [email protected] **** mnt-by: JAZZSEC created: 2018-05-21T10:47:44Z last-modified: 2018-05-21T10:47:44Z source: RIPE route: 95.23.0.0/16 descr: Jazz Telecom S.A. descr: Global Spanish ISP origin: AS12715 remarks: **** SPAM, Net Abuse and Security-Issues **** remarks: **** [email protected] **** mnt-by: JAZZSEC created: 2010-05-17T06:28:12Z last-modified: 2019-03-06T11:32:03Z source: RIPE
references
https://github.com/telekom-security/tpotce, https://feeds.dshield.org/feeds/topips.txt, https://feeds.dshield.org/feeds/top10.txt, https://feeds.dshield.org/feeds/block.txt, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 12 threat reports