IOC Radar
IPMediumSignal 22/100

103.158.252.79

Location
IndonesiaIndonesia
Brebes Regency, Central Java
ASN
AS141137
Rapid Network
First Seen
Jan 6, 2025
Last Seen
Mar 25, 2026
Jan 6
First Seen
523d ago
Mar 25
Last Seen
81d ago
8
Reports
source reports
22%
Confidence
medium
1/91
VirusTotal
detections
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
22%
Signal Score
22 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Network Information

CountryIDIndonesia
RegionBrebes Regency, Central Java
ASNAS141137
OrganizationRapid Network

IP Category

Proxy
Proxy server

Feed Intelligence Summary

8 reports22% confidence
8
Source reports
22%
Confidence score
Category tags
active scanningasiabotnetbotnet iocsbotnet miraibotnet propagationbrute forcecommand and controlcommunication protocolconnected devicescredential accesscredential stuffingdata exfiltrationddosddos attacksdenial of servicedevice managementdistributed attacksexploitationgorillabotidindicatorindonesiaindustrial iotinitial accessinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawprocess injectionprotocol exploitationproxyreconnaissanceresearchedscanning activitysmart devicesssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingstwitterxmrig

Activity Timeline

1 total obs
Mar 25Mar 25

Threat Activity Heatmap

· Peak: 2026-03-25
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
22
SIGNAL
Signal Score
22%
Confidence
8
Reports
First seenJan 6, 2025
Last seenMar 25, 2026
GeolocationID
CountryIndonesia
LocationBrebes Regency, Central Java
ASNAS141137
OrgRapid Network
Coords-6.1728, 106.8272
Proxy

VirusTotal

1/ 91vendors flagged
1% detection rateJun 9, 2026

WHOIS

raw
inetnum: 103.158.252.0 - 103.158.253.255 netname: MEDIACEPAT-ID descr: RAPID NETWORK descr: PT Media Cepat Indonesia descr: Corporate / Direct Member IDNIC descr: Jalan Anggrek F.91 Kelurahan Gandasuli descr: Kabupaten Brebes. 52215 admin-c: MT1080-AP tech-c: MT1080-AP tech-c: MWIS4-AP remarks: Send spam and abuse report to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-MEDIACEPAT-ID mnt-routes: MAINT-ID-MEDIACEPAT status: ALLOCATED PORTABLE last-modified: 2020-11-23T03:10:40Z source: APNIC irt: IRT-MEDIACEPAT-ID address: PT Media Cepat Indonesia address: Internet Service Provider address: Jl. Anggrek F.91 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MT1080-AP tech-c: MT1080-AP tech-c: MWIS4-AP auth: # Filtered mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2020-11-20T09:47:46Z source: APNIC person: Michael Takeuchi address: Jalan Anggrek F.91 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 country: ID phone: +62-812-8188-9660 e-mail: [email protected] nic-hdl: MT1080-AP mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2020-11-25T04:23:14Z source: APNIC person: Moch Wahyu Imam Santosa address: Jalan Anggrek F.91 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 country: ID phone: +62-813-3447-3339 e-mail: [email protected] nic-hdl: MWIS4-AP mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2020-11-25T04:23:25Z source: APNIC route: 103.158.252.0/23 descr: Route object ipv4 of Rapid Network descr: PT Media Cepat Indonesia descr: Jalan Anggrek F.91 descr: Kelurahan Gandasuli, descr: Kabupaten Brebes. 52215 origin: AS141137 mnt-by: MAINT-ID-MEDIACEPAT country: ID last-modified: 2020-12-01T08:35:41Z source: APNIC inetnum: 103.158.252.0 - 103.158.253.255 netname: MEDIACEPAT-ID descr: RAPID NETWORK descr: PT Media Cepat Indonesia descr: Corporate / Direct Member IDNIC descr: Jalan Anggrek F.91 Kelurahan Gandasuli descr: Kabupaten Brebes. 52215 admin-c: MT1080-AP tech-c: MT1080-AP tech-c: MWIS4-AP remarks: Send spam and abuse report to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-MEDIACEPAT-ID mnt-routes: MAINT-ID-MEDIACEPAT status: ALLOCATED PORTABLE last-modified: 2021-01-04T06:35:18Z source: IDNIC irt: IRT-MEDIACEPAT-ID address: PT Media Cepat Indonesia address: Jl. Anggrek F.91 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MT1080-AP tech-c: MT1080-AP auth: # Filtered mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2021-01-13T03:54:02Z source: IDNIC person: Michael Takeuchi address: Jalan Anggrek F.91 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 country: ID phone: +62-812-8188-9660 e-mail: [email protected] nic-hdl: MT1080-AP mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2025-04-08T19:56:46Z source: IDNIC person: Moch Wahyu Imam Santosa address: Jalan Anggrek F.91/92 address: Kelurahan Gandasuli address: Kabupaten Brebes. 52215 country: ID phone: +62-813-3447-3339 e-mail: [email protected] nic-hdl: MWIS4-AP mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2025-04-08T18:56:48Z source: IDNIC route: 103.158.252.0/24 descr: Route object ipv4 of Rapid Network origin: AS141137 mnt-by: MAINT-ID-MEDIACEPAT last-modified: 2022-07-21T16:24:32Z source: IDNIC
references
https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 8 threat reports