IPMediumSignal 22/100

`103.230.81.124`

Location

Indonesia

Pandeglang, Banten

ASN

AS150961

PT. Pandeglang Akses Semesta

First Seen

Jan 26, 2025

Last Seen

Apr 6, 2026

Jan 26

First Seen

510d ago

Apr 6

Last Seen

75d ago

Reports

source reports

22%

Confidence

medium

Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

22%

Signal Score

22 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

26 techniques

Network Information

Country

Indonesia

RegionPandeglang, Banten

ASNAS150961

OrganizationPT. Pandeglang Akses Semesta

IP Category

⟲

Proxy

Proxy server

Feed Intelligence Summary

9 reports22% confidence

Source reports

22%

Confidence score

Category tags

abuseaccess controlactive scanactive scanningasiabad reputationbotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcecommand and controlcommunication protocolconnected devicescredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksdenial of servicedevice managementdistributed attacksexploitationexploitation activitygorillabotididentity & access exploitationindicatorindonesiaindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysecurity policysmart devicesssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actorthreat preventiontor nodetwitterxmrig

Activity Timeline

1 total obs

Apr 6Apr 6

Threat Activity Heatmap

· Peak: 2026-04-06

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Threat ScoreLow Risk

SIGNAL

Signal Score

22%

Confidence

Reports

First seenJan 26, 2025

Last seenApr 6, 2026

GeolocationID

CountryIndonesia

LocationPandeglang, Banten

ASNAS150961

OrgPT. Pandeglang Akses Semesta

Coords0.0000, 0.0000

Proxy

VirusTotal

Not checked

WHOIS

raw: inetnum: 103.230.81.0 - 103.230.81.255 netname: IDNIC-KLIKPAS-ID descr: PT. Pandeglang Akses Semesta descr: Corporate / Direct Member IDNIC descr: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo descr: Pandeglang, Banten admin-c: SSI8-AP tech-c: SSI8-AP country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-KLIKPAS mnt-irt: IRT-KLIKPAS-ID status: ALLOCATED PORTABLE last-modified: 2023-03-29T16:41:49Z source: APNIC irt: IRT-KLIKPAS-ID address: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo address: Pandeglang, Banten e-mail: [email protected] abuse-mailbox: [email protected] admin-c: SSI8-AP tech-c: SSI8-AP auth: # Filtered mnt-by: MAINT-ID-KLIKPAS last-modified: 2023-03-29T16:34:25Z source: APNIC person: Syam Sokhibul Izar address: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo address: Pandeglang, Banten country: ID e-mail: [email protected] phone: +6285156259465 fax-no: +6285156259465 nic-hdl: SSI8-AP mnt-by: MNT-APJII-ID last-modified: 2023-03-29T16:29:15Z source: APNIC inetnum: 103.230.81.0 - 103.230.81.255 netname: IDNIC-KLIKPAS-ID descr: PT. Pandeglang Akses Semesta descr: Corporate / Direct Member IDNIC descr: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo descr: Pandeglang, Banten admin-c: SSI8-AP tech-c: SSI8-AP country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-KLIKPAS mnt-irt: IRT-KLIKPAS-ID status: ALLOCATED PORTABLE last-modified: 2023-06-27T02:39:52Z source: IDNIC irt: IRT-KLIKPAS-ID address: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo address: Pandeglang, Banten e-mail: [email protected] abuse-mailbox: [email protected] admin-c: SSI8-AP tech-c: SSI8-AP auth: # Filtered mnt-by: MAINT-ID-KLIKPAS last-modified: 2023-10-17T07:46:09Z source: IDNIC person: Syam Sokhibul Izar address: Perumahan Pondok Putri Geulis Blok C Nomor 8 Sukasari, Kaduhejo address: Pandeglang, Banten country: ID e-mail: [email protected] phone: +6285156259465 fax-no: +6285156259465 nic-hdl: SSI8-AP mnt-by: MAINT-ID-KLIKPAS last-modified: 2023-06-27T02:40:01Z source: IDNIC
references: https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200

`103.230.81.124`

MITRE ATT&CK TTPs

Network Information

IP Category

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey