IOC Radar
IPMediumSignal 45/100

119.93.64.216

Location
PhilippinesPhilippines
Makati City, National Capital Region
ASN
AS9299
Philippine Long Distance Telephone Company
First Seen
Dec 19, 2024
Last Seen
Jun 8, 2026
Dec 19
First Seen
541d ago
Jun 8
Last Seen
5d ago
16
Reports
source reports
45%
Confidence
medium
Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryPHPhilippines
RegionMakati City, National Capital Region
ASNAS9299
OrganizationPhilippine Long Distance Telephone Company

IP Category

Proxy
Proxy server

Feed Intelligence Summary

16 reports45% confidence
16
Source reports
45%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiabad reputationbad web botblog spambotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcebrute force attackerbrute-forcecommand and controlcommunication protocolconnected devicescredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdenial of servicedevice managementdistributed attacksencryptionexploitationexploitation activityexploited hostgorillabothackinghttps proxyidentity & access exploitationindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityopen proxyoutlawphphilippinesphishingphishing attackprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysecurity policysmart devicessocial engineeringspamssh attacksslt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.002t1190t1203t1486t1496t1497t1497.001t1498.001t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actorthreat preventiontor nodetwitterweb app attackweb application attackweb exploitationweb spamxmrig

Activity Timeline

1 total obs
Jun 8Jun 8

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
16
Reports
First seenDec 19, 2024
Last seenJun 8, 2026
GeolocationPH
CountryPhilippines
LocationMakati City, National Capital Region
ASNAS9299
OrgPhilippine Long Distance Telephone Company
Coords14.5831, 121.0410
Proxy

VirusTotal

Not checked

WHOIS

description
proxy-proxy_http search result.
raw
inetnum: 119.93.64.216 - 119.93.64.216 netname: ADSL descr: SMEANT2024120541933_ENTERPRISE CLIENT descr: This space has been assigned as STATIC country: PH admin-c: NOC36-AP tech-c: NOC36-AP abuse-c: AP713-AP status: ASSIGNED NON-PORTABLE remarks: assigned 20241206 mnt-by: PHIX-NOC-AP mnt-irt: IRT-PLDT-PH last-modified: 2024-12-07T08:38:15Z source: APNIC irt: IRT-PLDT-PH address: Philippine Long Distance Telephone Company address: 6/F Innolab Building address: Boni Avenue, Mandaluyong City address: Philippines e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NA185-AP tech-c: NA185-AP auth: # Filtered remarks: [email protected] is invalid mnt-by: PHIX-NOC-AP last-modified: 2025-07-30T13:06:33Z source: APNIC role: ABUSE PLDTPH country: ZZ address: Philippine Long Distance Telephone Company address: 6/F Innolab Building address: Boni Avenue, Mandaluyong City address: Philippines phone: +000000000 e-mail: [email protected] admin-c: NA185-AP tech-c: NA185-AP nic-hdl: AP713-AP remarks: Generated from irt object IRT-PLDT-PH remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-07-30T13:07:19Z source: APNIC person: PLDT APNIC NOC nic-hdl: NOC36-AP e-mail: [email protected] address: NFCSM-PLDT, 6/F Innolab Bldg, Boni Ave, Mandaluyong City, MM, Philippnes 1550 phone: +632-584-0201 country: PH mnt-by: PHIX-NOC-AP last-modified: 2017-02-01T02:28:01Z source: APNIC
references
https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 5 days ago
Appeared in 16 threat reports