IPMediumSignal 79/100
103.163.80.70
Location
IndonesiaCaruban, East Java
ASN
AS141674
PT Data Arta Sedaya
First Seen
Apr 6, 2024
Last Seen
Feb 22, 2026
Apr 6
First Seen
798d ago
Feb 22
Last Seen
111d ago
11
Reports
source reports
79%
Confidence
medium
1/91
VirusTotal
detections
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
79%
Signal Score
79 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndonesia
IndonesiaRegionCaruban, East Java
ASNAS141674
OrganizationPT Data Arta Sedaya
IP Category
⟲
Proxy
Proxy server
Feed Intelligence Summary
11 reports79% confidence
11
Source reports
79%
Confidence score
Category tags
abuseaccess controlactive scanningasiabad web botbotnetbotnet iocsbotnet miraibotnet propagationbrute forcecommand and controlcommunication protocolconnected devicescredential accesscredential harvestingcredential stuffingdata exfiltrationddosddos attackddos attacksdenial of servicedevice managementdistributed attacksexploitationexploited hostgorillabothackingindicatorindonesiaindustrial iotinitial accessinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot targetediot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawphishing attackprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysecurity policysmart devicessocial engineeringssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat preventiontwitterxmrig
Activity Timeline
Feb 22Feb 22
Threat Activity Heatmap
· Peak: 2026-02-22LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
79
SIGNAL
Signal Score
79%
Confidence
11
Reports
First seenApr 6, 2024
Last seenFeb 22, 2026
GeolocationID
CountryIndonesia
LocationCaruban, East Java
ASNAS141674
OrgPT Data Arta Sedaya
Coords-6.1728, 106.8272
Proxy
WHOIS
- raw
- inetnum: 103.163.80.0 - 103.163.81.255 netname: IDNIC-DARTANET-ID descr: PT Data Arta Sedaya descr: Corporate / Direct Member IDNIC descr: Dukuh Turi Rt 01 Rw 01 Kelurahan Turi, Kecamatan Jetis descr: Kab. Ponorogo, Propinsi Jawa Timur admin-c: SH2539-AP tech-c: SH2539-AP remarks: Send Spam & Abuse Report to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-DARTANET-ID mnt-routes: MAINT-ID-DARTANET status: ALLOCATED PORTABLE last-modified: 2023-12-22T04:44:59Z source: APNIC irt: IRT-DARTANET-ID address: DARTANET address: PT. DATA ARTA SEDAYA address: Dukuh Turi Rt 01 Rw 01 Kelurahan Turi, Kecamatan Jetis address: Kab. Ponorogo, Propinsi Jawa Timur e-mail: [email protected] abuse-mailbox: [email protected] admin-c: SH2539-AP tech-c: SH2539-AP auth: # Filtered mnt-by: MAINT-ID-DARTANET last-modified: 2023-12-22T04:45:47Z source: APNIC person: Samsul Hadi address: PT DATA ARTA SEDAYA address: Jl. Ngawi - Caruban, Ngawi, Prayungan, Cangakan, Kec. Kasreman address: Kab. Ngawi, Prov. Jawa Timur country: ID phone: +6285806780778 e-mail: [email protected] nic-hdl: SH2539-AP mnt-by: MAINT-ID-DARTANET abuse-mailbox: [email protected] last-modified: 2023-12-22T04:44:10Z source: APNIC inetnum: 103.163.80.0 - 103.163.81.255 netname: IDNIC-DARTANET-ID descr: PT Data Arta Sedaya descr: Corporate / Direct Member IDNIC descr: Dukuh Turi Rt 01 Rw 01 Kelurahan Turi, Kecamatan Jetis descr: Kab. Ponorogo, Propinsi Jawa Timur admin-c: SH2539-AP tech-c: SH2539-AP remarks: Send Spam & Abuse Report to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-DARTANET-ID mnt-routes: MAINT-ID-DARTANET mnt-lower: MAINT-ID-DARTANET status: ALLOCATED PORTABLE last-modified: 2023-12-22T06:57:28Z source: IDNIC irt: IRT-DARTANET-ID address: DARTANET address: PT. DATA ARTA SEDAYA address: Dukuh Turi Rt 01 Rw 01 Kelurahan Turi, Kecamatan Jetis address: Kab. Ponorogo, Propinsi Jawa Timur e-mail: [email protected] abuse-mailbox: [email protected] admin-c: SH2539-AP tech-c: SH2539-AP auth: # Filtered mnt-by: MAINT-ID-DARTANET last-modified: 2023-12-22T06:58:50Z source: IDNIC person: Samsul Hadi address: PT DATA ARTA SEDAYA address: Jl. Ngawi - Caruban, Ngawi, Prayungan, Cangakan, Kec. Kasreman address: Kab. Ngawi, Prov. Jawa Timur country: ID phone: +6285156719460 e-mail: [email protected] nic-hdl: SH2539-AP mnt-by: MAINT-ID-DARTANET abuse-mailbox: [email protected] last-modified: 2025-02-19T00:18:34Z source: IDNIC route: 103.163.80.0/24 descr: PT Data Arta Sedaya descr: Route Object of PT Data Arta Sedaya descr: Corporate / Direct Member IDNIC descr: Dukuh Turi Rt 01 Rw 01 Kelurahan Turi, Kecamatan Jetis descr: Kab. Ponorogo, Propinsi Jawa Timur origin: AS141674 mnt-by: MAINT-ID-DARTANET last-modified: 2024-12-11T06:47:01Z source: IDNIC
- references
- https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 3 months ago
Appeared in 11 threat reports