IntrusionLabs / threat intelligence

Sign in

← Back to feed

85.217.149.42

TAGGED SUSPICIOUS how we decide →

Threat Confidence

37%

Location

🇨🇦 CA / Beauharnois

ASN

AS209334 · Modat B.V.

Cloud Provider

—

Total Events

6

Below average by volume

Agent Count

2

First / Last Seen

2026-04-30 05:07 — 2026-05-30 22:29

Attack Types

http:scan ssh:bruteforce

MITRE ATT&CK Techniques

Reconnaissance

T1595 T1595.002

Initial Access

T1190

Credential Access

T1110 T1110.001

Discovery

T1046

External Corroboration

CINS Army

Reported 2026-06-10 18:07

cins:bad_reputation

Campaigns

Not associated with any campaigns

Session Forensics

scanner ×1 web_probe ×2

Sessions

3

Avg Depth Score

0.22

Commands Executed

0

Files Downloaded

0

Fingerprints

HASSH

bc3aee897af7d3feb9fc37b89c7d15c9

SSH Client

SSH-2.0-Go

Evidence Timeline

Web Probe df07b9dbd82d4c17 newark_01 · 2026-05-30 22:29

25%

Loading events...

Web Probe f49c81e814cae02b w4m_seattle_01 · 2026-05-19 20:23

25%

Loading events...

Scanner 8e9667e7bbd0 newark_01 · 2026-04-30 05:07

15%

Loading events...

Non-Session Events

Timestamp	Port	Proto	Event	Source	Location
2026-05-30 22:29:59	:80	http	HTTP GET request	opencanary	ewr
2026-05-19 20:23:20	:80	http	HTTP GET request	opencanary	sea