IPMediumSignal 33/100
103.227.107.4
Location
IndonesiaKebumen, Central Java
ASN
AS154217
PT Skynet Network Bersama
First Seen
Jan 6, 2025
Last Seen
Apr 13, 2026
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndonesia
IndonesiaRegionKebumen, Central Java
ASNAS154217
OrganizationPT Skynet Network Bersama
IP Category
⟲
Proxy
Proxy server
Feed Intelligence Summary
13 reports33% confidence
13
Source reports
33%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiabad reputationbotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcebrute force attackcommand and controlcommunication protocolconnected devicescredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdenial of servicedevice managementdistributed attacksencryptionexploitationexploitation activityexploited hostgorillabothong konghttps proxyididentity & access exploitationindicatorindonesiaindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawpassword attacksprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysecurity policysmart devicesssh attacksslt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actorthreat preventiontor nodetwitterxmrig
Activity Timeline
Apr 13Apr 13
Threat Activity Heatmap
· Peak: 2026-04-13LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
13
Reports
First seenJan 6, 2025
Last seenApr 13, 2026
GeolocationID
CountryIndonesia
LocationKebumen, Central Java
ASNAS154217
OrgPT Skynet Network Bersama
Coords22.2578, 114.1657
Proxy
VirusTotal
Not checked
WHOIS
- description
- proxy-proxy_http search result.
- raw
- inetnum: 103.227.106.0 - 103.227.107.255 netname: IDNIC-SKYNETNETWORKBERSAMA-ID descr: PT Skynet Network Bersama descr: Corporate / Direct Member IDNIC descr: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan descr: Kab. Pasaman, Provinsi Sumatera Barat - 26356 admin-c: YM1572-AP tech-c: YM1572-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-SKYNETNETWORKBERSAMA-ID mnt-routes: MAINT-ID-SKYNETNETWORKBERSAMA status: ASSIGNED PORTABLE last-modified: 2024-10-09T05:15:06Z source: APNIC irt: IRT-SKYNETNETWORKBERSAMA-ID address: SKYNET NETWORK BERSAMA ID address: PT. SKYNET NETWORK BERSAMA address: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan address: Kab. Pasaman, Provinsi Sumatera Barat - 26356 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: YM1572-AP tech-c: YM1572-AP mnt-by: MAINT-ID-SKYNETNETWORKBERSAMA auth: # Filtered last-modified: 2024-10-09T05:15:33Z source: APNIC person: Yendri Murda address: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan, Kab. Pasaman address: Provinsi Sumatera Barat, Kode Pos: 26356 country: ID phone: +62811669984 e-mail: [email protected] nic-hdl: YM1572-AP mnt-by: MAINT-ID-SKYNETNETWORKBERSAMA last-modified: 2024-10-09T05:14:49Z source: APNIC inetnum: 103.227.106.0 - 103.227.107.255 netname: IDNIC-SKYNETNETWORKBERSAMA-ID descr: PT Skynet Network Bersama descr: Corporate / Direct Member IDNIC descr: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan descr: Kab. Pasaman, Provinsi Sumatera Barat - 26356 admin-c: YM2-AP tech-c: YM2-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-SKYNETNETWORKBERSAMA-ID mnt-routes: MAINT-ID-SKYNETNETWORKBERSAMA status: ASSIGNED PORTABLE last-modified: 2024-09-02T07:58:24Z source: IDNIC irt: IRT-SKYNETNETWORKBERSAMA-ID address: SKYNET NETWORK BERSAMA ID address: PT. SKYNET NETWORK BERSAMA address: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan address: Kab. Pasaman, Provinsi Sumatera Barat - 26356 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: YM2-AP tech-c: YM2-AP mnt-by: MAINT-ID-SKYNETNETWORKBERSAMA auth: # Filtered last-modified: 2024-09-02T07:58:45Z source: IDNIC person: Yendri Murda address: Rambahan Baru 1, Desa/Kelurahan Tanjung Betung, Kec. Rao Selatan, Kab. Pasaman address: Provinsi Sumatera Barat, Kode Pos: 26356 country: ID phone: +62811669984 e-mail: [email protected] nic-hdl: YM2-AP mnt-by: MAINT-ID-SKYNETNETWORKBERSAMA last-modified: 2024-09-02T06:15:57Z source: IDNIC
- references
- https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 13 threat reports