IOC Radar
IPMediumSignal 25/100

103.88.239.178

Location
IndiaIndia
Hyderabad, AP
ASN
AS139490
Mana Communications
First Seen
Apr 28, 2024
Last Seen
Jun 4, 2026
Apr 28
First Seen
774d ago
Jun 4
Last Seen
7d ago
15
Reports
source reports
25%
Confidence
medium
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
25%
Signal Score
25 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryINIndia
RegionHyderabad, AP
ASNAS139490
OrganizationMana Communications

IP Category

Proxy
Proxy server

Feed Intelligence Summary

15 reports25% confidence
15
Source reports
25%
Confidence score
Category tags
active scanningasiabad web botbotnetbotnet iocsbotnet miraibotnet propagationbrute forcecommand and controlcommunication protocolcompromise ipv4connected devicescredential accesscredential harvestingcredential stuffingdata exfiltrationddosddos attackddos attacksdenial of servicedevice managementdistributed attacksexploitationexploited hostgorillabothackinginindiaindustrial iotinfrastructure acquisitionreconnaissanceinitial accessinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4ipv4 portirclinuxmalicious softwaremalwaremanualmirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawphishing attackprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysmart devicessocial engineeringspamssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595.001t1595.002t1595.003tcp protocoltelnet threatthingstoggletwitterxmrig

Activity Timeline

1 total obs
Jun 4Jun 4

Threat Activity Heatmap

· Peak: 2026-06-04
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
25
SIGNAL
Signal Score
25%
Confidence
15
Reports
First seenApr 28, 2024
Last seenJun 4, 2026
GeolocationIN
CountryIndia
LocationHyderabad, AP
ASNAS139490
OrgMana Communications
Coords15.2875, 77.8672
Proxy

VirusTotal

Not checked

WHOIS

description
proxy-proxy_http search result.
raw
inetnum: 103.88.236.0 - 103.88.239.255 netname: MANACOMM descr: Mana Communications admin-c: PH665-AP tech-c: PH665-AP country: IN mnt-by: MAINT-IN-IRINN mnt-irt: IRT-MANACOMM-IN mnt-routes: MAINT-IN-MANACOMM mnt-routes: MAINT-IN-IRINN status: ASSIGNED PORTABLE geofeed: https://www.aeronetonline.in/geofeed.csv last-modified: 2025-08-11T22:49:43Z source: APNIC irt: IRT-MANACOMM-IN address: H.NO. 12-13-480/11,STREET NO.01,TARNAKA,SECUNDERABAD,Hyderabad,Andhra Pradesh-500017 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: PH665-AP tech-c: PH665-AP auth: # Filtered mnt-by: MAINT-IN-MANACOMM last-modified: 2025-09-05T00:08:24Z source: APNIC person: PARISHA HARINATH address: H.NO. 12-13-480/11,STREET NO.01,TARNAKA,SECUNDERABAD,Hyderabad,Andhra Pradesh-500017 country: IN phone: +91 04064553030 e-mail: [email protected] nic-hdl: PH665-AP mnt-by: MAINT-IN-MANACOMM last-modified: 2021-11-08T09:11:33Z source: APNIC route: 103.88.239.0/24 descr: Mana Communications country: IN origin: AS139490 mnt-by: MAINT-IN-MANACOMM last-modified: 2021-11-11T11:10:27Z source: APNIC
references
https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200, https://1275.ru/ioc/4120/gs-553-mirai-botnet-iocs/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 7 days ago
Appeared in 15 threat reports