IOC Radar
IPMediumSignal 97/100

108.180.97.118

Location
CanadaCanada
Vancouver, BC
ASN
AS852
TELUS-FIBRE-VANCBC08
First Seen
Oct 29, 2024
Last Seen
Feb 1, 2026
Oct 29
First Seen
593d ago
Feb 1
Last Seen
133d ago
9
Reports
source reports
97%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
97%
Signal Score
97 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryCACanada
RegionVancouver, BC
ASNAS852
OrganizationTELUS-FIBRE-VANCBC08

Feed Intelligence Summary

9 reports97% confidence
9
Source reports
97%
Confidence score
Category tags
abuseactive scanningattackbotnetbrute forcebrute force attackbrute force attemptcacanadacisco devicecommand and controlcowriecowrie honeypotcowrie honeypot datacredential accesscredential harvestingcredential stuffingdata exfiltrationdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkinggithubhackinghoneytrap honeypotindicatorinfrastructure acquisitionreconnaissancelampmailoney honeypotmalicious activitymalicious softwaremalwaremanualmysqlnetworknetwork infrastructurenetwork loginnetwork probingnetwork scanningnetwork securitynetwork service scanningnginxnorth americapassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationpythonreconnaissanceremote serviceresearchedscannerserversftpsftp attacksftp exploit attemptslugsocial engineeringsshssh attackssh monitoringsurface webt1021t1021.004t1040t1041t1055t1071.001t1078t1078.001t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp/23telecommunicationstelnet threatthreat actorthreat detectionthreat intelligenceunauthorized access attemptunited statesus ip addressweb application attackweb exploitation

Activity Timeline

1 total obs
Feb 1Feb 1

Threat Activity Heatmap

· Peak: 2026-02-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
97
SIGNAL
Signal Score
97%
Confidence
9
Reports
First seenOct 29, 2024
Last seenFeb 1, 2026
GeolocationCA
CountryCanada
LocationVancouver, BC
ASNAS852
OrgTELUS-FIBRE-VANCBC08
Coords49.2773, -123.0679

VirusTotal

Not checked

WHOIS

description
2025-02-24T22:32:53.170Z Honeypot : Cowrie : Source: 108.180.97.118 Data: Connection lost after 12 seconds
raw
TELUS Communications Inc. TELUS (NET-108-180-0-0-1) 108.180.0.0 - 108.181.255.255 TELUS-FIBRE-VANCBC08 TELUS-FIBRE-VANCBC8 (NET-108-180-96-0-1) 108.180.96.0 - 108.180.99.255
references
https://github.com/telekom-security/tpotce, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 9 threat reports