IOC Radar
IPMediumSignal 41/100

103.97.140.159

Location
IndonesiaIndonesia
Cianjur, West Java
ASN
AS141071
PT Apik Media Inovasi
First Seen
Jan 26, 2025
Last Seen
May 31, 2026
Jan 26
First Seen
511d ago
May 31
Last Seen
21d ago
12
Reports
source reports
41%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
41%
Signal Score
41 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryIDIndonesia
RegionCianjur, West Java
ASNAS141071
OrganizationPT Apik Media Inovasi

IP Category

Proxy
Proxy server

Feed Intelligence Summary

12 reports41% confidence
12
Source reports
41%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiabad reputationbad web botbotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcebrute force attackbrute force attackercommand and controlcommunication protocolconnected devicescredential accesscredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackddos attacksdenial of servicedevice managementdistributed attacksexploitationexploitation activityexploited hostgorillabothackingididentity & access exploitationindonesiaindustrial iotinitial accessinjection activityinjection attacksinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawpassword attacksprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysecurity policysmart devicesssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.003t1059.004t1071t1071.001t1078t1078.001t1105t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1497t1497.001t1498.001t1499.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actorthreat preventiontor nodetwitterweb application attackweb exploitationxmrig

Activity Timeline

1 total obs
May 31May 31

Threat Activity Heatmap

· Peak: 2026-05-31
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
41
SIGNAL
Signal Score
41%
Confidence
12
Reports
First seenJan 26, 2025
Last seenMay 31, 2026
GeolocationID
CountryIndonesia
LocationCianjur, West Java
ASNAS141071
OrgPT Apik Media Inovasi
Coords-6.1728, 106.8272
Proxy

VirusTotal

Not checked

WHOIS

raw
inetnum: 103.97.140.0 - 103.97.141.255 netname: IDNIC-PTAMI-ID descr: PT Apik Media Inovasi descr: Corporate / Direct Member IDNIC descr: 30/F Menara Kadin descr: Jl. H.R. Rasuna Said Block X-5 Kav. 2-3 descr: Jakarta 12950 - Indonesia admin-c: AMIH1-AP tech-c: AMIH1-AP country: ID mnt-by: MNT-APJII-ID mnt-routes: MAINT-ID-PTAMI mnt-irt: IRT-PTAMI-ID status: ASSIGNED PORTABLE last-modified: 2018-04-09T04:53:06Z geoloc: -6.2536886 106.8306657 source: APNIC irt: IRT-PTAMI-ID address: PT Apik Media Inovasi address: 88@Kasablanka Office Tower A 26 F address: Jl. Casablanca Raya Kav.88, RT.16/RW.5 address: Menteng Dalam, Tebet, South Jakarta City address: Jakarta 12870 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AMIH1-AP tech-c: AMIH1-AP auth: # Filtered mnt-by: MAINT-ID-PTAMI last-modified: 2023-02-27T03:18:47Z source: APNIC role: APIK MEDIA INOVASI HOSTMASTERS address: 88@Kasablanka Office Tower A 26 F address: Jl. Casablanca Raya Kav.88, RT.16/RW.5 address: Menteng Dalam, Tebet, South Jakarta City address: Jakarta 12870 country: ID phone: +62-21-30499946 e-mail: [email protected] admin-c: AA886-AP tech-c: NNE2-AP nic-hdl: AMIH1-AP mnt-by: MAINT-ID-PTAMI remarks: spam and abuse report : [email protected] remarks: technical and routing : [email protected] remarks: administrative request : [email protected] last-modified: 2019-01-14T04:24:24Z source: APNIC route: 103.97.140.0/24 descr: route object for 103.97.140.0/24 descr: DracIndo Internusa descr: PT. Apik Media Inovasi descr: Jakarta - Indonesia origin: AS136845 mnt-by: MAINT-ID-PTAMI mnt-routes: MAINT-ID-PTAMI last-modified: 2017-10-06T03:09:16Z source: APNIC inetnum: 103.97.140.0 - 103.97.141.255 netname: IDNIC-PTAMI-ID descr: PT Apik Media Inovasi descr: Corporate / Direct Member IDNIC descr: 30/F Menara Kadin descr: Jl. H.R. Rasuna Said Block X-5 Kav. 2-3 descr: Jakarta 12950 - Indonesia admin-c: AMIH1-AP tech-c: AMIH1-AP country: ID mnt-by: MNT-APJII-ID mnt-routes: MAINT-ID-PTAMI mnt-irt: IRT-PTAMI-ID status: ASSIGNED PORTABLE last-modified: 2018-04-09T04:53:06Z geoloc: -6.2536886 106.8306657 source: IDNIC irt: IRT-PTAMI-ID address: PT Apik Media Inovasi address: 88@Kasablanka Office Tower A 26 F address: Jl. Casablanca Raya Kav.88, RT.16/RW.5 address: Menteng Dalam, Tebet, South Jakarta City address: Jakarta 12870 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AMIH1-AP tech-c: AMIH1-AP auth: # Filtered mnt-by: MAINT-ID-PTAMI last-modified: 2021-07-15T06:40:48Z source: IDNIC role: APIK MEDIA INOVASI HOSTMASTERS address: 88@Kasablanka Office Tower A 26 F address: Jl. Casablanca Raya Kav.88, RT.16/RW.5 address: Menteng Dalam, Tebet, South Jakarta City address: Jakarta 12950 - Indonesia country: ID phone: +62-21-30499946 e-mail: [email protected] admin-c: AHAM1-AP tech-c: AHAM1-AP nic-hdl: AMIH1-AP mnt-by: MAINT-ID-PTAMI remarks: spam and abuse report : [email protected] remarks: technical and routing : [email protected] remarks: administrative request : [email protected] abuse-mailbox: [email protected] last-modified: 2022-05-07T14:24:16Z source: IDNIC route: 103.97.140.0/24 descr: route object for 103.97.140.0/24 descr: DracIndo Internusa descr: PT. Apik Media Inovasi descr: Jakarta - Indonesia origin: AS136845 mnt-by: MAINT-ID-PTAMI mnt-routes: MAINT-ID-PTAMI last-modified: 2017-10-06T03:09:16Z source: IDNIC
references
https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 21 days ago
Appeared in 12 threat reports