{"ip":"137.220.202.61","exported_at":"2026-06-18T12:26:26+00:00","period_days":30,"metrics":{"events7d":0,"distinct_ports":0,"distinct_classifications":0,"max_severity":null,"last_sensor_id":"paris-1","max_waf_score":null,"max_risk_score":62,"attack_stage":null,"attack_chain_stage":null,"threat_family":[],"recommended_action":null,"confidence":null,"risk_breakdown":[],"mitre_tactics":[],"mitre_technique":null,"top_mitre_technique":null,"top_mitre_count":null,"executive_one_liner_fr":"risque 62\/100","campaign_hint_fr":null,"confidence_breakdown":[],"persona_hostname":null,"correlation_flags":[],"correlation_flags_labels_fr":[],"confidence_pct":null,"confidence_hint_fr":null,"sensor_role_label_fr":null,"tags_summary_labels_fr":[],"tags_summary":[],"attack_vector":null,"protocol_details":[],"protocol_summary_fr":null,"evidence_snippet":null,"target_port_label":null,"emulator_service":null,"confidence_reason":null,"classification_reason":null,"classification_reason_label_fr":null,"confidence_factors_fr":null,"payload_preview":null},"events":[{"id":7789160,"ip":"137.220.202.61","ts":"2026-05-27 10:54:52.000000","proto":"tcp","src_port":61427,"dst_port":32323,"service":null,"classification":"rdp_probe","waf_score":null,"waf_tags":null,"http_method":null,"http_target":null,"sensor_id":"paris-1","meta":"{\u0022bytes_in\u0022: 19, \u0022payload_entropy\u0022: 1.8784775129881184, \u0022port_category\u0022: \u0022registered\u0022, \u0022org\u0022: \u0022CTG Server Limited\u0022, \u0022service\u0022: null, \u0022app_proto\u0022: null, \u0022asn\u0022: 152194, \u0022country\u0022: \u0022JP\u0022, \u0022tag_count\u0022: 1, \u0022anomaly_count\u0022: 0, \u0022risk_score\u0022: 62, \u0022campaign_key\u0022: \u0022922d50fea356853b3304f0b7acf1c5d26f06e15a\u0022, \u0022event_fingerprint\u0022: \u00226cae704173b2d2dbc12a45d1a2cf372bb2f5dc6b\u0022, \u0022tags_list\u0022: [\u0022rdp_cookie\u0022]}","tls_sni":null,"tls_ja3_hash":null,"tls_ja3":null,"http_version":null,"http_host":null,"http_user_agent":null,"http_referer":null,"tags":"[\u0022rdp_cookie\u0022]","anomalies":"[]","severity":5,"bytes_in":19},{"id":7789154,"ip":"137.220.202.61","ts":"2026-05-27 10:54:39.000000","proto":"tcp","src_port":56052,"dst_port":32323,"service":null,"classification":"rdp_probe","waf_score":null,"waf_tags":null,"http_method":null,"http_target":null,"sensor_id":"paris-1","meta":"{\u0022bytes_in\u0022: 19, \u0022payload_entropy\u0022: 1.8784775129881184, \u0022port_category\u0022: \u0022registered\u0022, \u0022org\u0022: \u0022CTG Server Limited\u0022, \u0022service\u0022: null, \u0022app_proto\u0022: null, \u0022asn\u0022: 152194, \u0022country\u0022: \u0022JP\u0022, \u0022tag_count\u0022: 1, \u0022anomaly_count\u0022: 0, \u0022risk_score\u0022: 62, \u0022campaign_key\u0022: \u0022922d50fea356853b3304f0b7acf1c5d26f06e15a\u0022, \u0022event_fingerprint\u0022: \u00226cae704173b2d2dbc12a45d1a2cf372bb2f5dc6b\u0022, \u0022tags_list\u0022: [\u0022rdp_cookie\u0022]}","tls_sni":null,"tls_ja3_hash":null,"tls_ja3":null,"http_version":null,"http_host":null,"http_user_agent":null,"http_referer":null,"tags":"[\u0022rdp_cookie\u0022]","anomalies":"[]","severity":5,"bytes_in":19}],"total_events":2}