IOC Radar
IPMediumSignal 29/100

117.213.255.36

Location
IndiaIndia
Bengaluru, KA
ASN
AS9829
BSNL Internet
First Seen
Mar 22, 2025
Last Seen
Apr 1, 2026
Mar 22
First Seen
448d ago
Apr 1
Last Seen
73d ago
6
Reports
source reports
29%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
29%
Signal Score
29 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryINIndia
RegionBengaluru, KA
ASNAS9829
OrganizationBSNL Internet

Feed Intelligence Summary

6 reports29% confidence
6
Source reports
29%
Confidence score
Category tags
abuseactive scanactive scanningadbhoney attacksadbhoney honeypotasiaattackbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcowrie honeypotcowrie ssh attackscredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredecoy systemdionaea honeypotdionaea malware collectiondistributed attacksexploitation activityexploited hostftp brute forcehackingidentity & access exploitationindiaindicatorinjection activitymailoney email attacksmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork scanningpassword attacksphishingphishing attackphishing trapprocess injectionreconnaissanceresearchedscannersftp attacksocial engineeringssh attackssh monitoringt1021t1021.002t1041t1046t1055t1059.004t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1195.001t1204.002t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1583.001t1595t1595.001t1595.002t1595.003tannertanner web attacksthreat actorthreat intelligencetor node

Activity Timeline

1 total obs
Apr 1Apr 1

Threat Activity Heatmap

· Peak: 2026-04-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
29
SIGNAL
Signal Score
29%
Confidence
6
Reports
First seenMar 22, 2025
Last seenApr 1, 2026
GeolocationIN
CountryIndia
LocationBengaluru, KA
ASNAS9829
OrgBSNL Internet
Coords15.3581, 75.1417

VirusTotal

Not checked

WHOIS

description
2025-03-05T12:10:10.806Z Honeypot : Heralding : Source: 117.213.255.36 : Username/Password: adMIN/ADMInistrator Port: 1080 Message: 2025-03-05 12:10:10.806883,30fd9390-ca15-4e6d-9253-7e877f942c62,c368cf3a-bcde-4c49-b0ec-35872fa78683,117.213.255.36,45415,99.18.26.21,1080,socks5,adMIN,ADMInistrator,
raw
inetnum: 117.212.0.0 - 117.215.63.255 netname: BB-Multiplay descr: Broadband Multiplay Project, O/o DGM BB, NOC BSNL Bangalore country: IN admin-c: BH155-AP tech-c: DB374-AP abuse-c: AB1061-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-IN-DOT mnt-irt: IRT-BSNL-IN last-modified: 2021-07-15T07:16:25Z source: APNIC irt: IRT-BSNL-IN address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP auth: # Filtered remarks: [email protected] was validated on 2025-07-02 mnt-by: MAINT-IN-DOT last-modified: 2025-09-04T01:01:13Z source: APNIC role: ABUSE BSNLIN country: ZZ address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 phone: +000000000 e-mail: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP nic-hdl: AB1061-AP remarks: Generated from irt object IRT-BSNL-IN remarks: [email protected] was validated on 2025-07-02 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-07-02T04:54:12Z source: APNIC person: BSNL Hostmaster nic-hdl: BH155-AP e-mail: [email protected] address: Broadband Networks address: Bharat Sanchar Nigam Limited address: 2nd Floor, Telephone Exchange, Sector 62 address: Noida phone: +91-120-2404243 fax-no: +91-120-2404241 country: IN mnt-by: MAINT-IN-PER-DOT last-modified: 2021-12-08T10:52:18Z source: APNIC person: DGM Broadband address: BSNL NOC Bangalore country: IN phone: +91-080-25805800 fax-no: +91-080-25800022 e-mail: [email protected] nic-hdl: DB374-AP mnt-by: MAINT-IN-PER-DOT last-modified: 2011-02-19T10:03:44Z source: APNIC route: 117.213.240.0/20 descr: BSNL Internet country: IN origin: AS9829 mnt-lower: MAINT-IN-DOT mnt-routes: MAINT-IN-DOT mnt-by: MAINT-IN-AS9829 last-modified: 2008-09-04T07:55:06Z source: APNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 6 threat reports