IPHighVerifiedSignal 86/100
185.236.25.119
Location
SpainMadrid, VA
ASN
AS400992
JaJoJoo LLC
First Seen
Mar 3, 2026
Last Seen
Jun 17, 2026
Found in 53 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
95%
Signal Score
86 / 100
IDS Rule
Yes
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountrySpain
SpainRegionMadrid, VA
ASNAS400992
OrganizationJaJoJoo LLC
Feed Intelligence Summary
53 reports95% confidence
Activity Timeline
Jun 17Jun 15
Threat Activity Heatmap
· Peak: 2026-06-16LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
46
Critical
3mo
46
Critical
Threat ScoreHigh Risk
86
SIGNAL
Signal Score
95%
Confidence
53
Reports
First seenMar 3, 2026
Last seenJun 17, 2026
Verified IOC
GeolocationES
CountrySpain
LocationMadrid, VA
ASNAS400992
OrgJaJoJoo LLC
Coords38.6583, -77.2481
VirusTotal
Not checked
WHOIS
- description
- CC=US ASN=AS22773 cox communications inc.
- references
- https://ctrlaltintel.com/threat%20research/MuddyWater/, https://hunt.io/blog/iranian-apt-infrastructure-state-aligned-clusters, IOCs.2026.1.csv, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 3 months ago · Last seen 9 days ago
Appeared in 53 threat reports from 10 sources