IPMediumSignal 37/100
103.99.27.189
Location
IndonesiaTangerang, Banten
ASN
AS150279
PT Lintas Network Solusi
First Seen
Feb 20, 2025
Last Seen
Apr 7, 2026
Feb 20
First Seen
485d ago
Apr 7
Last Seen
74d ago
9
Reports
source reports
37%
Confidence
medium
1/91
VirusTotal
detections
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
37%
Signal Score
37 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndonesia
IndonesiaRegionTangerang, Banten
ASNAS150279
OrganizationPT Lintas Network Solusi
IP Category
⟲
Proxy
Proxy server
Feed Intelligence Summary
9 reports37% confidence
9
Source reports
37%
Confidence score
Category tags
active scanactive scanningasiabad web botbotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcecommand and controlcommunication protocolconnected devicescredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attacksdenial of servicedevice managementdistributed attacksencryptionexploitationexploitation activitygorillabothttps proxyididentity & access exploitationindicatorindonesiaindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysmart devicesssh attacksslt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.002t1499.003t1565t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actortor nodetwitterxmrig
Activity Timeline
Apr 7Apr 7
Threat Activity Heatmap
· Peak: 2026-04-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
37
SIGNAL
Signal Score
37%
Confidence
9
Reports
First seenFeb 20, 2025
Last seenApr 7, 2026
GeolocationID
CountryIndonesia
LocationTangerang, Banten
ASNAS150279
OrgPT Lintas Network Solusi
Coords0.0000, 0.0000
Proxy
WHOIS
- raw
- inetnum: 103.99.27.0 - 103.99.27.255 netname: IDNIC-LNS-ID descr: PT Lintas Network Solusi descr: Corporate / Direct Member IDNIC descr: Ruko Graha Raya Bintaro Blok G1/12 Paku Jaya, Serpong Utara descr: Tangerang Selatan 15324 admin-c: AHS10-AP tech-c: AHS10-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-LNS mnt-irt: IRT-LNS-ID mnt-routes: MAINT-ID-LNS mnt-routes: MNT-APJII-ID status: ALLOCATED PORTABLE last-modified: 2024-12-29T07:30:12Z source: APNIC irt: IRT-LNS-ID address: Head Office address: PT LINTAS NETWORK SOLUSI address: RUKO GRAHA RAYA BINTARO BLOK G1/12 PAKU JAYA, SERPONG UTARA address: TANGERANG SELATAN 15324 e-mail: [email protected] abuse-mailbox: [email protected] auth: # Filtered admin-c: AHS10-AP tech-c: AHS10-AP mnt-by: MAINT-ID-LNS last-modified: 2022-11-21T09:09:35Z source: APNIC person: AGUS HENDRA SETYAWAN address: RUKO GRAHA RAYA BINTARO BLOK G1/12 PAKU JAYA, SERPONG UTARA address: TANGERANG SELATAN 15324, INDONESIA country: ID e-mail: [email protected] phone: +62-21-59663522 fax-no: +62-21-59663522 nic-hdl: AHS10-AP mnt-by: MNT-APJII-ID last-modified: 2022-11-21T08:33:52Z source: APNIC route: 103.99.27.0/24 descr: Route Object for IP Address Lintas Network Solusi origin: AS150279 mnt-by: MNT-APJII-ID remarks: geofeed https://lintasnetwork.net/geofeed.csv last-modified: 2024-12-29T07:31:41Z source: APNIC inetnum: 103.99.27.0 - 103.99.27.255 netname: IDNIC-LNS-ID descr: PT Lintas Network Solusi descr: Corporate / Direct Member IDNIC descr: Ruko Graha Raya Bintaro Blok G1/12 Paku Jaya, Serpong Utara descr: Tangerang Selatan 15324 admin-c: AHS10-AP tech-c: AHS10-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-LNS mnt-irt: IRT-LNS-ID mnt-routes: MAINT-ID-LNS status: ALLOCATED PORTABLE last-modified: 2022-12-13T07:22:30Z source: IDNIC irt: IRT-LNS-ID address: PT Lintas Network Solusi address: Terrace 9 Blok D No.60 Suvarna Sutera address: Wana Kerta, Sindang Jaya, Tangerang 15560 e-mail: [email protected] abuse-mailbox: [email protected] auth: # Filtered admin-c: AHS10-AP tech-c: AHS10-AP mnt-by: MAINT-ID-LNS last-modified: 2024-12-27T17:56:40Z source: IDNIC person: AGUS HENDRA SETYAWAN address: RUKO GRAHA RAYA BINTARO BLOK G1/12 PAKU JAYA, SERPONG UTARA address: TANGERANG SELATAN 15324, INDONESIA country: ID e-mail: [email protected] phone: +62-21-59663522 fax-no: +62-21-59663522 nic-hdl: AHS10-AP mnt-by: MAINT-ID-LNS last-modified: 2022-12-13T07:22:55Z source: IDNIC route: 103.99.27.0/24 descr: Route Object for IP Address Lintas Network Solusi origin: AS150279 mnt-by: MAINT-ID-LNS remarks: geofeed https://lintasnetwork.net/geofeed.csv last-modified: 2024-12-04T08:42:12Z source: IDNIC
- references
- https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 9 threat reports