IPMediumSignal 55/100

`102.117.173.23`

Location

Mauritius

Pailles, Moka District

ASN

AS23889

Mauritius Telecom Ltd

First Seen

Feb 16, 2025

Last Seen

Feb 12, 2026

Feb 16

First Seen

479d ago

Feb 12

Last Seen

118d ago

Reports

source reports

55%

Confidence

medium

Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

55%

Signal Score

55 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

31 techniques

Network Information

Country

Mauritius

RegionPailles, Moka District

ASNAS23889

OrganizationMauritius Telecom Ltd

Feed Intelligence Summary

9 reports55% confidence

Source reports

55%

Confidence score

Category tags

aptasyncratbotnetc2cobaltstrikecommand and controlcredential harvestingdanabotdata exfiltrationdeimosdistributed attackshak5_cloud_c2havocindicatorinfrastructure acquisitionreconnaissanceiocmalicious softwaremalwaremanualmauritiusmumythicnetsupportratnetworkopen source intelligenceosintphishing attackprocess injectionremcos trojanremote accessremote servicesresearchedsliversocial engineeringsupershellt1005t1016t1021.001t1027t1036t1053t1055t1059t1059.003t1071t1071.001t1078t1083t1105t1189t1190t1204t1486t1496t1499.002t1499.003t1547t1565t1566t1566.001t1566.002t1566.003t1573t1587.001t1590.001t1598threat intelligence

Activity Timeline

1 total obs

Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Threat ScoreMedium Risk

SIGNAL

Signal Score

55%

Confidence

Reports

First seenFeb 16, 2025

Last seenFeb 12, 2026

GeolocationMU

CountryMauritius

LocationPailles, Moka District

ASNAS23889

OrgMauritius Telecom Ltd

Coords-20.2833, 57.5463

VirusTotal

Not checked

WHOIS

raw: inetnum: 102.112.0.0 - 102.119.255.255 netname: MauritiusTelecom-v4 descr: Mauritius Telecom Ltd country: MU org: ORG-mA21-AFRINIC admin-c: DR22-AFRINIC admin-c: NG28-AFRINIC admin-c: RB26-AFRINIC admin-c: JL279-AFRINIC admin-c: IJ7-AFRINIC tech-c: DR22-AFRINIC tech-c: NG28-AFRINIC tech-c: RB26-AFRINIC tech-c: JL279-AFRINIC tech-c: IJ7-AFRINIC status: ALLOCATED PA mnt-by: AFRINIC-HM-MNT mnt-lower: MU-MT-WIS-MNT mnt-domains: MU-MT-WIS-MNT source: AFRINIC # Filtered parent: 102.0.0.0 - 102.255.255.255 organisation: ORG-mA21-AFRINIC org-name: Mauritius Telecom Ltd org-type: LIR country: MU address: 4th Floor address: Orange Tower address: Ebene address: Ebene phone: tel:+230-203-7000 phone: tel:+230-404-3118 phone: tel:+230-404-3106 phone: tel:+230-404-3117 fax-no: tel:+230-208-1070 admin-c: DR22-AFRINIC admin-c: NG28-AFRINIC admin-c: JL279-AFRINIC admin-c: RB26-AFRINIC admin-c: IJ7-AFRINIC tech-c: DR22-AFRINIC tech-c: NG28-AFRINIC tech-c: JL279-AFRINIC tech-c: RB26-AFRINIC tech-c: IJ7-AFRINIC mnt-ref: AFRINIC-HM-MNT mnt-ref: MU-MT-WIS-MNT mnt-by: AFRINIC-HM-MNT source: AFRINIC # Filtered person: Dheeraj Ramkhelawon address: 4th Floor address: Myt Tower address: Ebene address: Mauritius address: Ebene address: Other phone: tel:+230-404-3118 nic-hdl: DR22-AFRINIC mnt-by: GENERATED-POIVPI7O6FPBZXYLX43E4WTGB71754AR-MNT source: AFRINIC # Filtered person: Iqbal Janmahomed address: Level 4 MyT tower address: Ebene Vybercity phone: tel:+230-5253-1584 phone: tel:+230-404-3152 nic-hdl: IJ7-AFRINIC mnt-by: GENERATED-QS3X43N5PTZ0X897WNQX50XIIPKVIN8O-MNT source: AFRINIC # Filtered person: Johnny Lim Fook nic-hdl: JL279-AFRINIC address: 7th Floor address: Telecom Tower address: Edith Cavell Street address: Port Louis address: Mauritius phone: tel:+230-5251-4942 fax-no: tel:+230-212-8290 mnt-by: MU-TELECOMPLUS-MNT source: AFRINIC # Filtered person: Norman Ghanty address: 4th Floor address: Orange Tower address: Ebene address: Mauritius phone: tel:+230-5251-6701 phone: tel:+230-404-3117 nic-hdl: NG28-AFRINIC mnt-by: GENERATED-8EHNCP81DKN7HLRANLGNDUTQC8FHPHGV-MNT source: AFRINIC # Filtered person: Ranjit Barah address: 4th Floor address: Myt Tower address: Ebene address: Mauritius address: Ebene address: Other phone: tel:+230-404-3106 nic-hdl: RB26-AFRINIC mnt-by: GENERATED-AVWWY9FBLGZHHNU5ZBBRDGBSK58ACQ6L-MNT source: AFRINIC # Filtered route: 102.112.0.0/13 descr: MauritiusTelecom origin: AS23889 mnt-by: MU-MT-WIS-MNT source: AFRINIC # Filtered
references: https://threatfox.abuse.ch/export/csv/recent/, https://x.com/drb_ra/status/1891016305198747921, https://x.com/drb_ra/status/1891017174770184687, https://x.com/drb_ra/status/1891017249500053673, https://x.com/drb_ra/status/1891017269569818740, https://x.com/drb_ra/status/1891017289828303055, https://x.com/drb_ra/status/1891017310820819437, https://x.com/drb_ra/status/1891017331628732530, https://x.com/drb_ra/status/1891017866213732864, https://x.com/drb_ra/status/1891017884152836511, https://x.com/drb_ra/status/1891017901999587834, https://x.com/drb_ra/status/1891017920152543437, https://x.com/drb_ra/status/1891017936187314637, https://x.com/drb_ra/status/1891017954663293308, https://x.com/drb_ra/status/1891017971310436357, https://x.com/drb_ra/status/1891017990449041598, https://x.com/drb_ra/status/1891018008178340314, https://x.com/drb_ra/status/1891018027753161109, https://x.com/drb_ra/status/1891018047617393053, https://x.com/drb_ra/status/1891018067812982914, https://x.com/drb_ra/status/1891018087232606497, https://x.com/drb_ra/status/1891018106706763796, https://x.com/drb_ra/status/1891018127166599456, https://x.com/drb_ra/status/1891018147848716625, https://x.com/drb_ra/status/1891018164848226599, https://x.com/drb_ra/status/1891018184188100623, https://x.com/drb_ra/status/1891018203129692285, https://x.com/drb_ra/status/1891018220024263032, https://x.com/drb_ra/status/1891082429927989389, https://x.com/drb_ra/status/1891082449213345932, https://x.com/drb_ra/status/1891082468507136162, https://x.com/drb_ra/status/1891082487796732110, https://x.com/drb_ra/status/1891082508025950520, https://x.com/drb_ra/status/1891082525793046735, https://x.com/drb_ra/status/1891083044192166121, https://x.com/drb_ra/status/1891197305178526130, https://x.com/drb_ra/status/1891197322261868885, https://x.com/drb_ra/status/1891197356898471980, https://x.com/drb_ra/status/1891197375303004435, https://x.com/drb_ra/status/1891197393829319064, https://x.com/drb_ra/status/1891197410174476622, https://x.com/drb_ra/status/1891197926736544062, https://x.com/drb_ra/status/1891197944558198983, https://x.com/drb_ra/status/1891197962216202751, https://x.com/drb_ra/status/1891197980390072434, https://x.com/drb_ra/status/1891197996429152463, https://x.com/drb_ra/status/1891198015521636781, https://x.com/drb_ra/status/1891198032181412327, https://x.com/drb_ra/status/1891198051701739652, https://x.com/drb_ra/status/1891198070253092880, https://x.com/drb_ra/status/1891233969477194100, https://x.com/drb_ra/status/1891233988531880366, https://x.com/drb_ra/status/1891264768020807874

`102.117.173.23`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy