IOC Radar
IPMediumSignal 75/100

103.181.143.181

Location
IndonesiaIndonesia
Cicurug, West Java
ASN
AS136052
PT Cloud Hosting Indonesia
First Seen
Mar 22, 2025
Last Seen
Feb 20, 2026
Mar 22
First Seen
457d ago
Feb 20
Last Seen
123d ago
12
Reports
source reports
75%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
75%
Signal Score
75 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

21 techniques

Network Information

CountryIDIndonesia
RegionCicurug, West Java
ASNAS136052
OrganizationPT Cloud Hosting Indonesia

Feed Intelligence Summary

12 reports75% confidence
12
Source reports
75%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackaustraliaaustralia network activitybotnetbrute forcebrute force attackcommand and controlcommunication protocolcredential accesscredential stuffingdata exfiltrationdecoy systemdistributed attacksindicatorindonesiamalicious activitymalicious softwaremalwarenetworknetwork enumerationnetwork probingnetwork reconnaissancenetwork scanningnetwork securityoceaniapassword attacksprocess injectionreconnaissanceredpiranhareferenceresearchedscanscannersecurity policysip scanningsipvicious scanssh attackssh scanningt1018t1040t1046t1055t1059t1071.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat intelligencethreat preventionunauthorized access attemptunknown threat actorvoip

Activity Timeline

1 total obs
Feb 20Feb 20

Threat Activity Heatmap

· Peak: 2026-02-20
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
75
SIGNAL
Signal Score
75%
Confidence
12
Reports
First seenMar 22, 2025
Last seenFeb 20, 2026
GeolocationID
CountryIndonesia
LocationCicurug, West Java
ASNAS136052
OrgPT Cloud Hosting Indonesia
Coords0.0000, 0.0000

VirusTotal

Not checked

WHOIS

description
IPV4 hosts detected performing scans on production environment located in Australia.
raw
inetnum: 103.181.143.0 - 103.181.143.255 netname: IDNIC-IDCLOUDHOST-ID descr: PT Cloud Hosting Indonesia descr: Corporate / Direct Member IDNIC descr: Pinus Raya Reni Jaya AG-1 No.01 descr: Pamulang Barat, Pamulang descr: Tangerang Selatan, Banten admin-c: APS20-AP tech-c: APS20-AP country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-IDCLOUDHOST-ID mnt-routes: MAINT-ID-IDCLOUDHOST status: ASSIGNED NON-PORTABLE last-modified: 2022-02-11T12:02:09Z source: APNIC irt: IRT-IDCLOUDHOST-ID address: PT Cloud Hosting Indonesia address: Jl. Bojonggenteng No. 2 address: Sukabumi, Jawa Barat e-mail: [email protected] abuse-mailbox: [email protected] admin-c: APS20-AP tech-c: APS20-AP auth: # Filtered mnt-by: MAINT-ID-IDCLOUDHOST last-modified: 2018-05-31T22:30:59Z source: APNIC person: Alfian Pamungkas Sakawiguna address: Jl. Bojonggenteng No.2 address: Sukabumi, Jawa Barat country: ID phone: +62-266-620073 e-mail: [email protected] nic-hdl: APS20-AP mnt-by: MAINT-ID-IDCLOUDHOST last-modified: 2017-01-23T07:34:14Z source: APNIC
references
https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 12 threat reports