IOC Radar
IPMediumSignal 54/100

103.184.122.84

Location
IndonesiaIndonesia
Jakarta, Jakarta
ASN
AS149705
PT Wijaya Trimitra Indonesia
First Seen
Jan 13, 2025
Last Seen
Apr 23, 2026
Jan 13
First Seen
531d ago
Apr 23
Last Seen
66d ago
21
Reports
source reports
54%
Confidence
medium
Found in 21 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
54%
Signal Score
54 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

50 techniques

Network Information

CountryIDIndonesia
RegionJakarta, Jakarta
ASNAS149705
OrganizationPT Wijaya Trimitra Indonesia

Feed Intelligence Summary

21 reports54% confidence
21
Source reports
54%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaptasiaattackauthenticationbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attemptbruteforcec2 servercliftoncommand & controlcommand and controlcompromised hostscredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredata theftddosdenial of servicedistributed attackseuropeexploit attemptsexploitation activityexploited hostfinlandfrancefraud voipftp brute forcegermanyhackinghoneynet connecthttp brute forceididentity & access exploitationindicatorindonesiainfoinformation technologyinfrastructure acquisitionreconnaissanceinjection activityiocit infrastructurelateral movementlogin attemptmalicious activitymalicious softwaremalwaremalware distributionmalware propagationmalware scanningmanualnetworknetwork enumerationnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork traffic analysisnorth americanoticepassword attackpassword attacksphishingphishing attackpolandprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscams & fraudscannerscanning activitysecurity operationssecurity policysmb brute forcesmtp brute forcesocial engineeringsoftware developmentspamsql injection attemptssshssh attackt1021t1021.001t1021.002t1021.003t1021.004t1021.005t1040t1046t1055t1059t1059.001t1059.003t1059.004t1068t1071t1071.001t1076t1078t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1203t1210t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1573t1587.001t1588t1590.001t1592t1595t1595.001t1595.002t1595.003targeting databasetcp scantelnet threatthreat actorthreat intelligencethreat preventiontor nodeudp scanunauthorized access attemptunited statesvulnerability scanweb application attackweb exploitation

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
54
SIGNAL
Signal Score
54%
Confidence
21
Reports
First seenJan 13, 2025
Last seenApr 23, 2026
GeolocationID
CountryIndonesia
LocationJakarta, Jakarta
ASNAS149705
OrgPT Wijaya Trimitra Indonesia
Coords-6.1769, 106.9470

VirusTotal

Not checked

WHOIS

raw
inetnum: 103.184.122.0 - 103.184.123.255 netname: IDNIC-WIJAYAPAYMENT-ID descr: PT Wijaya Trimitra Indonesia descr: Corporate / Direct Member IDNIC descr: Cloud Service for Payment Gateway descr: Vijaya Kusuma Blok B4/12 descr: Cipadung - Cibiru descr: Bandung - Jawa Barat admin-c: AF794-AP tech-c: AF794-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-WIJAYAPAYMENT mnt-irt: IRT-WIJAYAPAYMENT-ID mnt-routes: MAINT-ID-WIJAYAPAYMENT status: ALLOCATED PORTABLE last-modified: 2022-12-07T07:15:36Z source: APNIC irt: IRT-WIJAYAPAYMENT-ID address: WIJAYAPAYMENT.net address: PT. WIJAYA TRIMITRA INDONESIA address: Cloud Service for Payment Gateway address: Vijaya Kusuma Blok B4/12 address: Cipadung - Cibiru address: Bandung - Jawa Barat e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AF794-AP tech-c: AF794-AP auth: # Filtered mnt-by: MAINT-ID-WIJAYAPAYMENT last-modified: 2022-12-07T07:15:56Z source: APNIC person: Anggi Fauzi address: Vijaya Kusuma Blok B4/12 country: ID phone: +6285793712632 e-mail: [email protected] nic-hdl: AF794-AP mnt-by: MAINT-ID-WIJAYAPAYMENT last-modified: 2022-12-07T07:14:57Z source: APNIC inetnum: 103.184.122.0 - 103.184.123.255 netname: IDNIC-WIJAYAPAYMENT-ID descr: PT Wijaya Trimitra Indonesia descr: Corporate / Direct Member IDNIC descr: Cloud Service for Payment Gateway descr: Vijaya Kusuma Blok B4/12 descr: Cipadung - Cibiru descr: Bandung - Jawa Barat admin-c: AF794-AP tech-c: AF794-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-WIJAYAPAYMENT mnt-irt: IRT-WIJAYAPAYMENT-ID mnt-routes: MAINT-ID-WIJAYAPAYMENT status: ALLOCATED PORTABLE last-modified: 2022-12-07T07:18:13Z source: IDNIC irt: IRT-WIJAYAPAYMENT-ID address: WIJAYAPAYMENT.co.id address: PT. WIJAYA TRIMITRA INDONESIA address: Cloud Service for Payment Gateway address: Vijaya Kusuma Blok B4/12 address: Cipadung - Cibiru address: Bandung - Jawa Barat e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AF794-AP tech-c: AF794-AP auth: # Filtered mnt-by: MAINT-ID-WIJAYAPAYMENT last-modified: 2022-12-07T07:18:50Z source: IDNIC person: Anggi Fauzi address: Vijaya Kusuma Blok B4/12 country: ID phone: +6285793712632 e-mail: [email protected] nic-hdl: AF794-AP mnt-by: MAINT-ID-WIJAYAPAYMENT last-modified: 2022-12-07T07:15:13Z source: IDNIC
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 21 threat reports