ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Ip
Threat Intelligence: High percentage of detected threat requests (83.3%), all accessed paths ('xmlrpc.php', 'wp-login.php') flagged by WAF, and triggered critical WAF deny rules ('IPBLOCK-PENALTY-BOX', 'PLATFORM-ANOMALY'), indicating active WordPress enumeration/brute-force attempts. This behavior is consistent with other blocklisted IPs from Russia.

Linked Entities

TLS Fingerprints (1)

3%7e5280136f5f66ec7b Investigate

Hostnames Targeted

Hostname	Request Count
www.darcherif.fr	19

Paths Targeted (with Hostname Counts)

Path	Distinct Hostnames
wp-login.php	1
xmlrpc.php	1

🚫

Block

High percentage of detected threat requests (83.3%), all accessed paths ('xmlrpc.php', 'wp-login.php') flagged by WAF, and triggered critical WAF deny rules ('IPBLOCK-PENALTY-BOX', 'PLATFORM-ANOMALY'), indicating active WordPress enumeration/brute-force attempts. This behavior is consistent with other blocklisted IPs from Russia.

2026-01-16 14:41:30

Investigation Workspace

Entity: 37.77.150.123 (Ip)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Hostname Counts)

Block