IPHighVerifiedSignal 22/100
103.144.18.56
Location
IndonesiaSumberdangdang, East Java
ASN
AS139418
PT Gasatek Bintang Nusantara
First Seen
Mar 29, 2025
Last Seen
May 29, 2026
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
22%
Signal Score
22 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndonesia
IndonesiaRegionSumberdangdang, East Java
ASNAS139418
OrganizationPT Gasatek Bintang Nusantara
Feed Intelligence Summary
4 reports22% confidence
4
Source reports
22%
Confidence score
Category tags
active scanactive scanningasiabank securitybotnetcommand and controlcommunication protocoldata exfiltrationdenial of servicedistributed attacksenumerationfinancefinancial institutionfinancial serviceshackingidindicatorindonesiainformation gatheringmalicious softwaremalwarenetworknetwork attacksnetwork enumerationnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork traffic analysisopen port discoveryprocess injectionreconnaissanceresearchedscannerscanning activityt1016t1018t1040t1046t1055t1071.001t1078t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1589t1595t1595.001t1595.002t1595.003tcp protocol
Activity Timeline
May 29May 29
Threat Activity Heatmap
· Peak: 2026-05-29LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
22
SIGNAL
Signal Score
22%
Confidence
4
Reports
First seenMar 29, 2025
Last seenMay 29, 2026
Verified IOC
GeolocationID
CountryIndonesia
LocationSumberdangdang, East Java
ASNAS139418
OrgPT Gasatek Bintang Nusantara
Coords-8.1839, 113.7040
VirusTotal
Not checked
WHOIS
- raw
- NetRange: 103.0.0.0 - 103.255.255.255 CIDR: 103.0.0.0/8 NetName: APNIC-103 NetHandle: NET-103-0-0-0-1 Parent: () NetType: Allocated to APNIC OriginAS: Organization: Asia Pacific Network Information Centre (APNIC) RegDate: 2011-01-09 Updated: 2011-02-10 Comment: This IP address range is not registered in the ARIN database. Comment: For details, refer to the APNIC Whois Database via Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment: for the Asia Pacific region. APNIC does not operate networks Comment: using this IP address range and is not able to investigate Comment: spam or abuse reports relating to these addresses. For more Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming Ref: https://rdap.arin.net/registry/ip/103.0.0.0 ResourceLink: http://wq.apnic.net/whois-search/static/search.html ResourceLink: whois.apnic.net OrgName: Asia Pacific Network Information Centre OrgId: APNIC Address: PO Box 3646 City: South Brisbane StateProv: QLD PostalCode: 4101 Country: AU RegDate: Updated: 2012-01-24 Ref: https://rdap.arin.net/registry/entity/APNIC ReferralServer: whois://whois.apnic.net ResourceLink: http://wq.apnic.net/whois-search/static/search.html OrgAbuseHandle: AWC12-ARIN OrgAbuseName: APNIC Whois Contact OrgAbusePhone: +61 7 3858 3188 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN OrgTechHandle: AWC12-ARIN OrgTechName: APNIC Whois Contact OrgTechPhone: +61 7 3858 3188 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN inetnum: 103.144.18.0 - 103.144.19.255 netname: GASATEKNET-ID descr: PT Gasatek Bintang Nusantara descr: Internet Service Provider descr: Jl.Letjen Sutoyo V No. 102B descr: Kebonsari, Sumbersari descr: Kab.Jember,Jawa Timur, 68122 admin-c: UM38-AP tech-c: UM38-AP country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-GASATEKNET-ID mnt-routes: MAINT-ID-GASATEKNET status: ALLOCATED PORTABLE last-modified: 2019-10-11T08:45:40Z source: APNIC irt: IRT-GASATEKNET-ID address: PT Gasatek Bintang Nusantara address: Jl.Letjen Sutoyo V no 102B address: Kebonsari, Sumbersari address: Kab.Jember, Jawa Timur, 68122 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: UM38-AP tech-c: UM38-AP auth: # Filtered mnt-by: MAINT-ID-GASATEKNET last-modified: 2019-10-11T08:41:26Z source: APNIC person: UBAITULLAH MASRUR address: Jl.Letjen Sutoyo V no 102, Kebonsari address: Jember,Jawa Timur 68122, Indonesia country: ID phone: +62-821-43261101 e-mail: [email protected] nic-hdl: UM38-AP mnt-by: MNT-APJII-ID last-modified: 2019-10-08T09:13:24Z source: APNIC route: 103.144.18.0/24 descr: Route object of PT Gasatek Bintang Nusantara descr: PT Gasatek Bintang Nusantara descr: Jl.Letjen Sutoyo V No. 102B descr: Jember,Jawa Timur, 68122 origin: AS139418 mnt-by: MAINT-ID-GASATEKNET last-modified: 2019-12-17T23:48:26Z source: APNIC inetnum: 103.144.18.0 - 103.144.19.255 netname: GASATEKNET-ID descr: PT Gasatek Bintang Nusantara descr: Internet Service Provider descr: Jl.Letjen Sutoyo V No. 102B descr: Kebonsari, Sumbersari descr: Kab.Jember,Jawa Timur, 68122 admin-c: UM38-AP tech-c: UM38-AP country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-GASATEKNET-ID mnt-routes: MAINT-ID-GASATEKNET status: ALLOCATED PORTABLE last-modified: 2020-04-28T04:18:26Z source: IDNIC irt: IRT-GASATEKNET-ID address: PT Gasatek Bintang Nusantara address: Jl.Letjen Sutoyo V no 102B address: Kebonsari, Sumbersari address: Kab.Jember, Jawa Timur, 68122 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: UM38-AP tech-c: UM38-AP auth: # Filtered mnt-by: MAINT-ID-GASATEKNET last-modified: 2020-04-28T04:17:59Z source: IDNIC person: UBAITULLAH MASRUR address: Jl.Letjen Sutoyo V no 102, Kebonsari address: Jember,Jawa Timur 68122, Indonesia country: ID phone: +62-821-43261101 e-mail: [email protected] nic-hdl: UM38-AP mnt-by: MNT-APJII-ID last-modified: 2020-04-28T04:17:45Z source: IDNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 1 year ago · Last seen 17 days ago
Appeared in 4 threat reports