RST Threat feed. IOC: 51.79.69.211

2021-08-14T00:00:00
ID RST:81C23322-4877-3757-AE5D-B6B749531271
Type rst
Reporter RST Threat Feed
Modified 2021-08-14T00:00:00

Description

Found 51[.]79.69.211 in RST Threat Feed with score 43. First seen: 2021-08-14T03:00:00, Last seen: 2021-08-14T03:00:00. IOC tags: c2. We found that the IOC is used by: darkhalo_group,cobalt_strike. ASN 16276: (First IP 51.79.0.0, Last IP 51.79.255.255). ASN Name "OVH" and Organisation "". This IP is a part of "ovh" address pools. ASN hosts 9292395 domains. GEO IP information: City "", Country "Canada". In according to RST Threat Feed the IP is related to content.pcmsar.net malicious domains. https://rstcloud.net/