IPMediumSignal 30/100
119.156.243.110
Location
PakistanIslamabad, Islamabad
ASN
AS17557
Ptcl
First Seen
Nov 7, 2023
Last Seen
Jun 4, 2026
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
30%
Signal Score
30 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryPakistan
PakistanRegionIslamabad, Islamabad
ASNAS17557
OrganizationPtcl
Feed Intelligence Summary
17 reports30% confidence
17
Source reports
30%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningadbhoney honeypotapacheapache attackerapplication layer attackasiaattackaustraliaauthentication attackauthentication bypass attemptautomated attackbad reputationbad web botblog spambotnetbotnet activitybotnet activity detectedbrute forcebrute force attackbrute force attacksbrute force attemptsc2cisco devicecommand & controlcommand and controlcommand injectioncommunication protocolcompromised hostconpot honeypotcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase securityddosddos attackdecoy systemdenial of servicedevice managementdionaea honeypotdistributed attacksdnsdns attackenterprise networkingeuropeexploitexploit attemptsexploitation activityfattfinlandfranceftpftp brute forceftp brute-forcegermanyhackinghoneynet connecthoneytrap honeypothttp brute forcehttp scannerics securityidentity & access exploitationindicatorindustrial control systemsinformation technologyinitial accessinitial access attemptinjection activityiociot securityiot/ics attackipphoney honeypotit infrastructurelamplateral movementlinux systems targetedlogin attemptmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionnetworknetwork attacksnetwork enumerationnetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork scanningnetwork securitynetwork service exploitationnetwork service scanningnorth americaoceaniap0fpassword attackpassword attacksphishingphishing attackphishing trapping of deathpolandpossible credential reuseprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanning activityscripting attacksscripting languagesecurity policysensor-taggedsentrypeer botnetserver exploitationservice scansftp attacksmb brute forcesmtpsmtp brute forcesocial engineeringsoftware developmentspamsql injectionssh attackssh monitoringt1005t1021t1021.001t1021.002t1021.003t1021.004t1021.005t1040t1041t1046t1055t1059t1059.001t1059.003t1059.004t1059.007t1068t1071t1071.001t1076t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1185t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1505.002t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1573t1590t1592t1595t1595.001t1595.002t1595.003tannertargeting databasetcp protocoltcp scantelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetpotudp scanunauthorized access attemptunited statesvnc protocolvoipvoip attackweb applicationweb application attackweb application exploitationweb attackweb developmentweb exploitationweb spamweb traffic
Activity Timeline
Jun 4Jun 4
Threat Activity Heatmap
· Peak: 2026-06-04LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
30
SIGNAL
Signal Score
30%
Confidence
17
Reports
First seenNov 7, 2023
Last seenJun 4, 2026
GeolocationPK
CountryPakistan
LocationIslamabad, Islamabad
ASNAS17557
OrgPtcl
Coords33.6648, 73.0419
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 119.156.224.0 - 119.156.255.255 netname: PTCL descr: IPTV POOL RESERVED country: PK admin-c: MA527-AP tech-c: MA527-AP abuse-c: AP1078-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-PK-PTCLBB mnt-irt: IRT-PTCLBB-PK last-modified: 2021-01-20T22:25:18Z source: APNIC irt: IRT-PTCLBB-PK address: General Manager, address: Pakistan Telecommunication Company Limited. address: H-9/1, CDDT Building, Training Block address: Islamabad, Pakistan e-mail: [email protected] e-mail: [email protected] abuse-mailbox: [email protected] abuse-mailbox: [email protected] admin-c: MA527-AP tech-c: MA527-AP auth: # Filtered remarks: [email protected] is invalid remarks: [email protected] is invalid mnt-by: MAINT-PK-PTCLBB last-modified: 2025-05-07T13:07:26Z source: APNIC role: ABUSE PTCLBBPK country: ZZ address: General Manager, address: Pakistan Telecommunication Company Limited. address: H-9/1, CDDT Building, Training Block address: Islamabad, Pakistan phone: +000000000 e-mail: [email protected] e-mail: [email protected] admin-c: MA527-AP tech-c: MA527-AP nic-hdl: AP1078-AP remarks: Generated from irt object IRT-PTCLBB-PK remarks: [email protected] is invalid remarks: [email protected] is invalid abuse-mailbox: [email protected] abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-07T13:08:41Z source: APNIC person: Munir Ahmed address: SM TAC H-9/1, Islamabad address: Islamabad, Pakistan country: PK phone: +92-51-4865412 e-mail: [email protected] e-mail: [email protected] nic-hdl: MA527-AP mnt-by: MAINT-PTCLBB-PK last-modified: 2020-08-26T13:56:32Z source: APNIC route: 119.156.243.0/24 origin: AS17557 descr: Pakistan Telecommuication company limited CDDT Building, H-9/1, Training Block Pakistan Telecommunication Company Limited GM, Multimedia & Broadband mnt-by: MAINT-PK-PTCLBB last-modified: 2020-07-28T04:58:02Z source: APNIC route: 119.156.243.0/24 origin: AS45595 descr: Pakistan Telecommuication company limited CDDT Building, H-9/1, Training Block Pakistan Telecommunication Company Limited GM, Multimedia & Broadband mnt-by: MAINT-PK-PTCLBB last-modified: 2020-04-22T04:24:44Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 9 days ago
Appeared in 17 threat reports