IOC Radar
IPMediumSignal 63/100

103.149.238.90

Location
IndonesiaIndonesia
Purwodadi Grobogan, JI
ASN
AS140384
PT BITNIAGA CIPTA GEMILANG
First Seen
Jul 14, 2021
Last Seen
Feb 14, 2026
Jul 14
First Seen
1793d ago
Feb 14
Last Seen
117d ago
6
Reports
source reports
63%
Confidence
medium
1/91
VirusTotal
detections
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
63%
Signal Score
63 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

20 techniques

Network Information

CountryIDIndonesia
RegionPurwodadi Grobogan, JI
ASNAS140384
OrganizationPT BITNIAGA CIPTA GEMILANG

Feed Intelligence Summary

6 reports63% confidence
6
Source reports
63%
Confidence score
Category tags
active scanningasiabank securitybotnetcommand and controlcommunication protocoldata exfiltrationdenial of servicedistributed attacksenumerationfinancefinancial institutionfinancial servicesindicatorindonesiainformation gatheringmalicious softwaremalwarenetworknetwork attacksnetwork enumerationnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork traffic analysisopen port discoveryprocess injectionreconnaissanceresearchedscanning activityt1016t1018t1040t1046t1055t1071.001t1078t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1589t1595t1595.001t1595.002t1595.003tcp protocol

Activity Timeline

1 total obs
Feb 14Feb 14

Threat Activity Heatmap

· Peak: 2026-02-14
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
63
SIGNAL
Signal Score
63%
Confidence
6
Reports
First seenJul 14, 2021
Last seenFeb 14, 2026
GeolocationID
CountryIndonesia
LocationPurwodadi Grobogan, JI
ASNAS140384
OrgPT BITNIAGA CIPTA GEMILANG
Coords-7.1572, 112.3919

VirusTotal

1/ 91vendors flagged
1% detection rateJun 8, 2026

WHOIS

raw
NetRange: 103.0.0.0 - 103.255.255.255 CIDR: 103.0.0.0/8 NetName: APNIC-103 NetHandle: NET-103-0-0-0-1 Parent: () NetType: Allocated to APNIC OriginAS: Organization: Asia Pacific Network Information Centre (APNIC) RegDate: 2011-01-09 Updated: 2011-02-10 Comment: This IP address range is not registered in the ARIN database. Comment: For details, refer to the APNIC Whois Database via Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment: for the Asia Pacific region. APNIC does not operate networks Comment: using this IP address range and is not able to investigate Comment: spam or abuse reports relating to these addresses. For more Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming Ref: https://rdap.arin.net/registry/ip/103.0.0.0 ResourceLink: http://wq.apnic.net/whois-search/static/search.html ResourceLink: whois.apnic.net OrgName: Asia Pacific Network Information Centre OrgId: APNIC Address: PO Box 3646 City: South Brisbane StateProv: QLD PostalCode: 4101 Country: AU RegDate: Updated: 2012-01-24 Ref: https://rdap.arin.net/registry/entity/APNIC ReferralServer: whois://whois.apnic.net ResourceLink: http://wq.apnic.net/whois-search/static/search.html OrgTechHandle: AWC12-ARIN OrgTechName: APNIC Whois Contact OrgTechPhone: +61 7 3858 3188 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN OrgAbuseHandle: AWC12-ARIN OrgAbuseName: APNIC Whois Contact OrgAbusePhone: +61 7 3858 3188 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN inetnum: 103.149.238.0 - 103.149.239.255 netname: BITNIAGA-ID descr: PT BITNIAGA CIPTA GEMILANG descr: Internet Service Provider descr: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging descr: Kabupaten Mojokerto admin-c: MAS11-AP tech-c: MAS11-AP country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-BCG-ID mnt-routes: MAINT-ID-BCG status: ALLOCATED PORTABLE last-modified: 2020-03-27T11:42:17Z source: APNIC irt: IRT-BCG-ID address: PT. BITNIAGA CIPTA GEMILANG address: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging address: Kabupaten Mojokerto 61384 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MAS11-AP tech-c: MAS11-AP auth: # Filtered mnt-by: MAINT-ID-BCG last-modified: 2020-03-27T11:36:21Z source: APNIC person: Mukh Aviv Sudarmanto address: Sarirejo Gg.4 No. 11 Kec. Mojosari address: Kab. Mojokerto 61382, Indonesia country: ID phone: +62-82-232202134 e-mail: [email protected] nic-hdl: MAS11-AP mnt-by: MNT-APJII-ID last-modified: 2020-03-26T12:27:46Z source: APNIC route: 103.149.238.0/24 descr: Route Object of PT BITNIAGA CIPTA GEMILANG descr: Internet Service Provider descr: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging descr: Kabupaten Mojokerto origin: AS140384 mnt-by: MAINT-ID-BCG last-modified: 2020-03-27T12:42:19Z source: APNIC inetnum: 103.149.238.0 - 103.149.239.255 netname: BITNIAGA-ID descr: PT BITNIAGA CIPTA GEMILANG descr: Internet Service Provider descr: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging descr: Kabupaten Mojokerto admin-c: MAS11-AP tech-c: MAS11-AP country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-BCG-ID mnt-routes: MAINT-ID-BCG status: ALLOCATED PORTABLE last-modified: 2020-05-26T07:13:35Z source: IDNIC irt: IRT-BCG-ID address: PT. BITNIAGA CIPTA GEMILANG address: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging address: Kabupaten Mojokerto 61384 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MAS11-AP tech-c: MAS11-AP auth: # Filtered mnt-by: MAINT-ID-BCG last-modified: 2020-05-26T07:13:35Z source: IDNIC person: Mukh Aviv Sudarmanto address: Sarirejo Gg.4 No. 11 Kec. Mojosari address: Kab. Mojokerto 61382, Indonesia country: ID phone: +62-82-232202134 e-mail: [email protected] nic-hdl: MAS11-AP mnt-by: MNT-APJII-ID last-modified: 2020-05-26T07:13:35Z source: IDNIC route: 103.149.238.0/23 descr: Route Object of PT BITNIAGA CIPTA GEMILANG descr: Internet Service Provider descr: Dsn. Ringgit DS. Kembangringgit RT.03 RW.06 Kec. Pungging descr: Kabupaten Mojokerto origin: AS140384 mnt-by: MAINT-ID-BCG last-modified: 2020-05-26T07:13:35Z source: IDNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 3 months ago
Appeared in 6 threat reports