IOC Radar
IPMediumSignal 52/100

117.254.102.118

Location
IndiaIndia
Bengaluru, KA
ASN
AS9829
NIB
First Seen
Apr 11, 2025
Last Seen
Jan 21, 2026
Apr 11
First Seen
435d ago
Jan 21
Last Seen
150d ago
10
Reports
source reports
52%
Confidence
medium
1/91
VirusTotal
detections
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
52%
Signal Score
52 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

37 techniques

Network Information

CountryINIndia
RegionBengaluru, KA
ASNAS9829
OrganizationNIB

Feed Intelligence Summary

10 reports52% confidence
10
Source reports
52%
Confidence score
Category tags
access controlactive scanningarmasciiasiaasyncratbackdoorbase64-loaderbotnetbotnetdomainbrute force attackcensysclipboardhijackercode injectioncoinminercommand and controlcommand executioncommunication protocolcredential accesscredential stuffingdarktortilladarkvisionratdata encryptiondata exfiltrationdbatloaderdcratddosddos attacksddosagentdecoy systemdistributed attacksdlldocdropped-by-lummastealerelfencodedexeexploited hostfakecaptchagafgytgetshellguloaderhackinghajimehijackloaderhtahtmlindiaindicatorinternet of thingsintrusion detectioniot botnetiot/ics attackjpg-base64-loaderlateral movementlokilummastealermalicious powershell activitymalicious softwaremalwaremeterpretermipsmirai botnetmodiloadermoobotmozimsinetworknetwork attacksnetwork protocolnetwork scanningnetwork securityopendirpassword attacksprocess injectionps1quasarratraccoonclipperratreconnaissanceremcosratremote accessresearchedrev-base64-loadersaint helena, ascension and tristan da cunhascanscannerscripting attackssecurity policysliversmartloadersmoke loadersshdkitt1021.002t1027t1040t1055t1059t1059.001t1059.007t1071t1071.001t1077t1078t1086t1105t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1204t1204.001t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566t1583t1588t1589t1592t1595.001t1595.002t1595.003tcp protocolthreat intelligencethreat preventiontsunamiua-wgetvidarvipkeyloggerweb exploitationxloaderxwormzip

Activity Timeline

1 total obs
Jan 21Jan 21

Threat Activity Heatmap

· Peak: 2026-01-21
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
52
SIGNAL
Signal Score
52%
Confidence
10
Reports
First seenApr 11, 2025
Last seenJan 21, 2026
GeolocationIN
CountryIndia
LocationBengaluru, KA
ASNAS9829
OrgNIB
Coords12.9187, 74.8598

VirusTotal

1/ 91vendors flagged
1% detection rateJun 8, 2026

WHOIS

raw
inetnum: 117.192.0.0 - 117.255.255.255 netname: BSNLNET descr: NIB (National Internet Backbone) descr: Bharat Sanchar Nigam Limited descr: 8th Floor,148-B,Statesman House, Barakhamba Road, descr: New Delhi-110001 country: IN org: ORG-BSNL1-AP admin-c: NC83-AP tech-c: CDN1-AP abuse-c: AB1061-AP status: ALLOCATED PORTABLE remarks: IP Addresses for Multiplay network remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-IN-DOT mnt-irt: IRT-BSNL-IN last-modified: 2020-06-25T06:55:18Z source: APNIC irt: IRT-BSNL-IN address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP auth: # Filtered remarks: [email protected] was validated on 2025-07-02 mnt-by: MAINT-IN-DOT last-modified: 2025-07-02T04:53:55Z source: APNIC organisation: ORG-BSNL1-AP org-name: Bharat Sanchar Nigam Ltd org-type: LIR country: IN address: Bharat Sanchar Nigam Limited address: Bharat Sanchar Bhawan, Harish Chandra Mathur Lane, Janpath, New Delhi ? 110 001 address: India phone: +91-120-2404243 fax-no: +91-11-26116783 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2025-07-10T12:58:54Z source: APNIC role: ABUSE BSNLIN country: ZZ address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 phone: +000000000 e-mail: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP nic-hdl: AB1061-AP remarks: Generated from irt object IRT-BSNL-IN remarks: [email protected] was validated on 2025-07-02 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-07-02T04:54:12Z source: APNIC role: CGM Data Networks address: CTS Compound address: Netaji Nagar address: New Delhi- 110 023 country: IN phone: +91-11-24106782 phone: +91-11-24102119 fax-no: +91-11-26116783 fax-no: +91-11-26887888 e-mail: [email protected] e-mail: [email protected] admin-c: CGMD1-AP tech-c: DT197-AP tech-c: BH155-AP nic-hdl: CDN1-AP mnt-by: MAINT-IN-DOT last-modified: 2021-12-08T11:06:57Z source: APNIC role: NS Cell address: Internet Cell address: Bharat Sanchar Nigam Limited address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 country: IN phone: +91-11-23734057 phone: +91-11-23710183 fax-no: +91-11-23734052 e-mail: [email protected] e-mail: [email protected] admin-c: CGMD1-AP tech-c: DT197-AP nic-hdl: NC83-AP mnt-by: MAINT-IN-DOT last-modified: 2022-03-16T10:12:22Z source: APNIC route: 117.254.96.0/20 descr: BSNL Internet country: IN origin: AS9829 mnt-lower: MAINT-IN-DOT mnt-routes: MAINT-IN-DOT mnt-by: MAINT-IN-AS9829 last-modified: 2008-09-04T07:55:07Z source: APNIC
references
https://urlhaus.abuse.ch/browse/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 5 months ago
Appeared in 10 threat reports