IOC Radar
IPMediumSignal 100/100

103.174.115.184

Location
IndonesiaIndonesia
Cicurug, West Java
ASN
AS136052
PT. AwanBit Data Indonesia
First Seen
Nov 25, 2024
Last Seen
Feb 5, 2026
Nov 25
First Seen
576d ago
Feb 5
Last Seen
139d ago
18
Reports
source reports
99%
Confidence
medium
Found in 18 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

43 techniques

Network Information

CountryIDIndonesia
RegionCicurug, West Java
ASNAS136052
OrganizationPT. AwanBit Data Indonesia

IP Category

Hosting
Hosting provider

Feed Intelligence Summary

18 reports99% confidence
18
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningasiaatif feedattackaustraliaauthenticationauto-generated securityautomated scanningbanlist feedbinary defensebotnetbrute forcebrute force attackbrute force attemptbrute-forccisco devicecommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdecoy systemdevice managementdistributed attacksenterprise networkingenumerationexternal scanninghoneytrap honeypotidindicatorindonesiainfoinfrastructure acquisitionreconnaissancelampmailoney honeypotmalicious activitymalicious softwaremalwaremanualnetworknetwork infrastructurenetwork probingnetwork scanningnetwork scanning activitynetwork securitynoticeoceaniapassword attackpassword attacksphishingphishing attackphishing trappotential intrusion attemptprocess injectionreconnaissanceremote accessresearchedscanscannersecurity operationssecurity policysftp attacksip scanningsocial engineeringssh attackssh monitoringssh scanningt1005t1016t1018t1040t1041t1046t1053t1055t1059t1071.001t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1134t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1588t1588.002t1589t1590t1590.001t1591t1592t1593t1594t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat detectionthreat intelligencethreat preventionunauthorized accessvoip

Activity Timeline

1 total obs
Feb 5Feb 5

Threat Activity Heatmap

· Peak: 2026-02-05
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
18
Reports
First seenNov 25, 2024
Last seenFeb 5, 2026
GeolocationID
CountryIndonesia
LocationCicurug, West Java
ASNAS136052
OrgPT. AwanBit Data Indonesia
Coords-6.8422, 106.7230
Hosting

VirusTotal

Not checked

WHOIS

description
IPV4 hosts detected performing scans on production environment located in Australia.
raw
inetnum: 103.174.114.0 - 103.174.115.255 netname: IDNIC-AWANBIT-ID descr: PT. AwanBit Data Indonesia descr: Corporate / Direct Member IDNIC descr: SakaSpace descr: Jl. Bojonggenteng No.2 descr: Sukabumi, Jawa Barat admin-c: FRS7-AP tech-c: FRS7-AP remarks: Send Spam & Abuse Report to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-AWANBIT mnt-irt: IRT-AWANBIT-ID mnt-routes: MAINT-ID-AWANBIT status: ALLOCATED PORTABLE last-modified: 2021-10-11T09:30:28Z source: APNIC irt: IRT-AWANBIT-ID address: PT. AwanBit Data Indonesia address: Jl. Bojonggenteng No 2 address: Sukabumi, Jawa Barat e-mail: [email protected] abuse-mailbox: [email protected] admin-c: FRS7-AP tech-c: FRS7-AP auth: # Filtered mnt-by: MAINT-ID-AWANBIT last-modified: 2021-10-11T09:22:22Z source: APNIC person: Faisal Reza ST address: Jl. Bojonggenteng No 2 address: Sukabumi country: ID phone: +62-85926-900755 e-mail: [email protected] nic-hdl: FRS7-AP mnt-by: MAINT-ID-AWANBIT last-modified: 2021-10-11T09:23:28Z source: APNIC
references
https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://redpiranha.net, https://github.com/telekom-security/tpotce, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 18 threat reports