IPMediumSignal 58/100

`103.131.19.45`

Location

Indonesia

Batang, Central Java

ASN

AS138089

PT Global Media Data Prima

First Seen

Dec 10, 2024

Last Seen

Apr 28, 2026

Dec 10

First Seen

547d ago

Apr 28

Last Seen

44d ago

Reports

source reports

58%

Confidence

medium

Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

58%

Signal Score

58 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

33 techniques

Network Information

Country

Indonesia

RegionBatang, Central Java

ASNAS138089

OrganizationPT Global Media Data Prima

IP Category

⟲

Proxy

Proxy server

Feed Intelligence Summary

19 reports58% confidence

Source reports

58%

Confidence score

Category tags

abuseaccess controlactive scanactive scanningaptasiabad reputationbad web botblocklist_allbotnetbotnet activitybotnet infrastructurebotnet iocsbotnet miraibotnet propagationbrute forcebrute force attackbrute force attackscommand and controlcommunication protocolcompromised hostsconnected devicescredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdenial of servicedevice managementdistributed attacksencryptionexploitationexploitation activityexploited hostftp attacksgorillabothackinghttps proxyididentity & access exploitationimapimap attackindonesiaindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious ip addressesmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawpassword attacksprocess injectionprotocol exploitationproxyrdp attacksreconnaissanceresearchedscannerscanning activitysecurity policysmart devicessmtpsmtp attackerssh attackssh attackssslt1021t1021.001t1040t1046t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1090t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actorthreat preventiontor nodetwitterxmrig

Activity Timeline

1 total obs

Apr 28Apr 28

Threat Activity Heatmap

· Peak: 2026-04-28

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Threat ScoreMedium Risk

SIGNAL

Signal Score

58%

Confidence

Reports

First seenDec 10, 2024

Last seenApr 28, 2026

GeolocationID

CountryIndonesia

LocationBatang, Central Java

ASNAS138089

OrgPT Global Media Data Prima

Coords-6.1728, 106.8272

Proxy

VirusTotal

Not checked

WHOIS

description: proxy-proxy_http search result.
raw: inetnum: 103.131.16.0 - 103.131.19.255 netname: GMIS-ID descr: PT Global Media Inti Semesta descr: Internet Service Provider descr: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 descr: Sukamantri, PasarKemis Kab. Tangerang descr: Tangerang 15560, Indonesia admin-c: BDNW1-AP tech-c: BDNW1-AP country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-GMIS mnt-irt: IRT-GMIS-ID mnt-routes: MAINT-ID-GMIS status: ALLOCATED PORTABLE last-modified: 2018-10-15T03:12:37Z source: APNIC irt: IRT-GMIS-ID address: PT Global Media Inti Semesta address: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 address: Sukamantri, PasarKemis Kab. Tangerang e-mail: [email protected] abuse-mailbox: [email protected] admin-c: BDNW1-AP tech-c: BDNW1-AP auth: # Filtered mnt-by: MAINT-ID-GMIS last-modified: 2025-09-04T04:49:48Z source: APNIC person: Bravo Drajat Nititoto Wibowo address: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 address: Sukamantri, PasarKemis Kab. Tangerang address: Tangerang 15560, Indonesia country: ID phone: +62-21-22359292 e-mail: [email protected] nic-hdl: BDNW1-AP mnt-by: MNT-APJII-ID fax-no: +62-21-22359292 last-modified: 2018-10-05T03:57:14Z source: APNIC route: 103.131.19.0/24 descr: Route object for PT Global Media Data Prima origin: AS138089 mnt-by: MAINT-ID-GMIS country: ID last-modified: 2021-09-21T03:20:45Z source: APNIC inetnum: 103.131.16.0 - 103.131.19.255 netname: GMIS-ID descr: PT Global Media Inti Semesta descr: Internet Service Provider descr: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 descr: Sukamantri, PasarKemis Kab. Tangerang descr: Tangerang 15560, Indonesia admin-c: BDNW1-AP tech-c: BDNW1-AP country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-GMIS mnt-irt: IRT-GMIS-ID mnt-routes: MAINT-ID-GMIS status: ALLOCATED PORTABLE last-modified: 2018-11-23T09:28:43Z source: IDNIC irt: IRT-GMIS-ID address: PT Global Media Inti Semesta address: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 address: Sukamantri, PasarKemis Kab. Tangerang e-mail: [email protected] abuse-mailbox: [email protected] admin-c: BDNW1-AP tech-c: BDNW1-AP auth: # Filtered mnt-by: MAINT-ID-GMIS last-modified: 2018-11-23T09:28:43Z source: IDNIC person: Bravo Drajat Nititoto Wibowo address: Jl. Raya Puri Jaya Blok AE No.23 Rt.03 Rw. 011 address: Sukamantri, PasarKemis Kab. Tangerang address: Tangerang 15560, Indonesia country: ID phone: +62-21-22359292 e-mail: [email protected] nic-hdl: BDNW1-AP mnt-by: MAINT-ID-ASEAN fax-no: +62-21-22359292 last-modified: 2018-11-23T09:28:42Z source: IDNIC route: 103.131.19.0/24 descr: Route object for PT Global Media Data Prima origin: AS138089 mnt-by: MAINT-ID-GMIS country: ID last-modified: 2021-09-16T09:36:39Z source: IDNIC
references: https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200

`103.131.19.45`

MITRE ATT&CK TTPs

Network Information

IP Category

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy