IOC Radar
IPHighVerifiedSignal 61/100

95.71.162.245

Location
Russian FederationRussian Federation
Krasnokholm, ORE
ASN
AS12389
OJSC VolgaTelecom
First Seen
Apr 17, 2026
Last Seen
Apr 23, 2026
Apr 17
First Seen
58d ago
Apr 23
Last Seen
52d ago
4
Reports
source reports
61%
Confidence
high
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
61%
Signal Score
61 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryRURussian Federation
RegionKrasnokholm, ORE
ASNAS12389
OrganizationOJSC VolgaTelecom

Feed Intelligence Summary

4 reports61% confidence
4
Source reports
61%
Confidence score
Category tags
active scanbrute forcebrute force attackereurope/asiaindicatornetworkportscanresearchedrussiascannersservice scanvultr

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
61
SIGNAL
Signal Score
61%
Confidence
4
Reports
First seenApr 17, 2026
Last seenApr 23, 2026
Verified IOC
GeolocationRU
CountryRussian Federation
LocationKrasnokholm, ORE
ASNAS12389
OrgOJSC VolgaTelecom
Coords51.7648, 55.3821

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Paris (France) honeypot
raw
inetnum: 95.71.128.0 - 95.71.191.255 netname: OREN_VT descr: OJSC "VolgaTelecom" country: RU admin-c: SAN11-RIPE tech-c: SAS51-RIPE tech-c: AO704-RIPE status: ASSIGNED PA mnt-by: ESOO-MNT mnt-routes: ESOO-MNT created: 2008-11-27T16:09:41Z last-modified: 2008-11-27T16:09:41Z source: RIPE # Filtered person: Alexey Orlov address: "VolgaTelekom", Tereshkovoi str. 10, 460000, Orenburg phone: +7 831 4375173 fax-no: +7 3532 569843 nic-hdl: AO704-RIPE mnt-by: ESOO-MNT created: 2004-02-11T10:31:08Z last-modified: 2015-06-08T13:38:56Z source: RIPE # Filtered person: Sergey A Nikonov address: 10, Tereshkovoi st., address: Orenburg Russia 460000 phone: +7 3532 560879 fax-no: +7 3532 560063 nic-hdl: SAN11-RIPE mnt-by: PORTAL-NOC created: 1970-01-01T00:00:00Z last-modified: 2001-09-21T23:55:04Z source: RIPE # Filtered person: Sergey A Stepanov address: 10, Tereshkovoi st., address: Orenburg Russia 460000 phone: +7 3532 574419 fax-no: +7 3532 560063 nic-hdl: SAS51-RIPE mnt-by: ESOO-MNT created: 2002-11-29T15:20:25Z last-modified: 2002-11-29T15:20:25Z source: RIPE # Filtered route: 95.71.160.0/20 descr: Orenburg branch office of VolgaTelecom company origin: AS25008 mnt-by: ESOO-MNT created: 2008-12-08T11:41:01Z last-modified: 2008-12-08T11:41:01Z source: RIPE
references
https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 month ago · Last seen 1 month ago
Appeared in 4 threat reports