IOC Radar
IPMediumSignal 99/100

196.188.104.221

Location
EthiopiaEthiopia
Addis Ababa, Addis Ababa
ASN
AS24757
Ethiotelecom
First Seen
Oct 29, 2022
Last Seen
Feb 2, 2026
Oct 29
First Seen
1321d ago
Feb 2
Last Seen
129d ago
19
Reports
source reports
99%
Confidence
medium
5/91
VirusTotal
detections
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
99 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

15 techniques

Network Information

CountryETEthiopia
RegionAddis Ababa, Addis Ababa
ASNAS24757
OrganizationEthiotelecom

Feed Intelligence Summary

19 reports99% confidence
19
Source reports
99%
Confidence score
Category tags
active scanningaerospace & defenseattackauthentication abuseautomotive manufacturingbrute forcebrute force attackbrute force attemptcivil servicescowrie honeypotcredential accesscredential harvestingcredential stuffingdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologyelectronics manufacturinggovernment technologyindicatorindustrial automationindustrial iotindustrial productioniocloginmalicious activitymalwaremanufacturing technologymilitary operationsnational securitynetworknetwork intrusionnetwork securitynextraypassword attacksphishing attackprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlreconnaissanceregulatory agenciesremote accessresearchedscannersecurity operationssocial engineeringssh attackssh monitoringsupply chain managementt1040t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1566.001t1566.002t1566.003t1595t1595.001t1595.002t1595.003telnet threatthreat actorthreat intelligence

Activity Timeline

1 total obs
Feb 2Feb 2

Threat Activity Heatmap

· Peak: 2026-02-02
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
99
SIGNAL
Signal Score
99%
Confidence
19
Reports
First seenOct 29, 2022
Last seenFeb 2, 2026
GeolocationET
CountryEthiopia
LocationAddis Ababa, Addis Ababa
ASNAS24757
OrgEthiotelecom
Coords9.0245, 38.7485

VirusTotal

5/ 91vendors flagged
5% detection rateJun 8, 2026

WHOIS

description
every host is banned for 3 hours and receives an abuse report from me every 96 hours if it continues

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 4 months ago
Appeared in 19 threat reports