IPMediumSignal 77/100
103.181.11.60
Location
IndiaAhmedabad, Gujarat
ASN
AS149266
EHA NET Private Limited
First Seen
May 20, 2025
Last Seen
Nov 11, 2025
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
77%
Signal Score
77 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndia
IndiaRegionAhmedabad, Gujarat
ASNAS149266
OrganizationEHA NET Private Limited
Feed Intelligence Summary
10 reports77% confidence
10
Source reports
77%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackbotnetbrute forcebrute force attackbrute force attemptcommand and controlcommunication protocolcommunication technologiescredential accesscredential stuffingdata exfiltrationddosddos attackddos attacksdecoy systemdenial of servicedistributed attacksexploit attemptsftp brute forcehttp brute forceindiaindicatorinternet of thingsintrusion detectioniociot botnetiot/ics attacklateral movementmalicious activitymalicious network activitymalicious softwaremalwaremalware propagationmalware scanningmirai botnetmobile carriersmobile networksnetworknetwork attacksnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscanscannersecurity policysmtp brute forcesql injection attemptsssh attackt1021t1021.001t1021.002t1040t1046t1055t1056.001t1059t1059.001t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.001t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003tcp protocoltelecom servicestelecommunicationstelnet threatthreat actorthreat intelligencethreat prevention
Activity Timeline
Nov 11Nov 11
Threat Activity Heatmap
· Peak: 2025-11-11LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
77
SIGNAL
Signal Score
77%
Confidence
10
Reports
First seenMay 20, 2025
Last seenNov 11, 2025
GeolocationIN
CountryIndia
LocationAhmedabad, Gujarat
ASNAS149266
OrgEHA NET Private Limited
Coords0.0000, 0.0000
VirusTotal
Not checked
WHOIS
- description
- Scans hitting the server at TCP port 23 Telnet. Same IP should not appear more than once in 96 hours in our lists S3#.
- raw
- inetnum: 103.181.10.0 - 103.181.11.255 netname: EHANETPL descr: EHA NET PRIVATE LIMITED admin-c: MP1352-AP tech-c: NA976-AP country: IN mnt-by: MAINT-IN-IRINN mnt-irt: IRT-EHANETPL-IN mnt-routes: MAINT-IN-EHANETPL mnt-routes: MAINT-IN-IRINN status: ASSIGNED PORTABLE last-modified: 2025-08-11T22:51:24Z source: APNIC irt: IRT-EHANETPL-IN address: SHOP NO 23 27 NEW SATTADHAR COMPLEX OPP MAHAVIR SMRUTI SOC NR CP NAGAR CHAR,Ahmedabad,Gujarat-380061 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MP1352-AP tech-c: NA976-AP auth: # Filtered mnt-by: MAINT-IN-EHANETPL last-modified: 2025-09-04T23:59:12Z source: APNIC role: NOC ADMIN address: SHOP NO 23 27 NEW SATTADHAR COMPLEX OPP MAHAVIR SMRUTI SOC NR CP NAGAR CHAR,Ahmedabad,Gujarat-380061 country: IN phone: +91 9727766998 e-mail: [email protected] admin-c: MP1352-AP tech-c: MP1352-AP nic-hdl: NA976-AP mnt-by: MAINT-IN-EHANETPL last-modified: 2022-02-01T12:09:35Z source: APNIC person: MRUDUL PATEL address: SHOP NO 23 27 NEW SATTADHAR COMPLEX OPP MAHAVIR SMRUTI SOC NR CP NAGAR CHAR,Ahmedabad,Gujarat-380061 country: IN phone: +91 9727766998 e-mail: [email protected] nic-hdl: MP1352-AP mnt-by: MAINT-IN-IRINN last-modified: 2022-02-01T12:05:45Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 7 months ago
Appeared in 10 threat reports