IOC Radar
IPMediumSignal 45/100

122.179.135.67

Location
IndiaIndia
Mumbai, GJ
ASN
AS24560
Bharti Airtel Ltd.
First Seen
Jun 8, 2024
Last Seen
Apr 5, 2026
Jun 8
First Seen
737d ago
Apr 5
Last Seen
70d ago
13
Reports
source reports
45%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

42 techniques

Network Information

CountryINIndia
RegionMumbai, GJ
ASNAS24560
OrganizationBharti Airtel Ltd.

IP Category

Proxy
Proxy server

Feed Intelligence Summary

13 reports45% confidence
13
Source reports
45%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiaattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptcisco devicecommand and controlcommunication protocolcompromised credentialscowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkingeuropeexploitation activityftphackinghoneytrap honeypothttp scanneridentity & access exploitationinindiaindicatorinfrastructure acquisitionreconnaissanceinitiator ipinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackkfsensor honeypotlamplateral movementloginmailoney honeypotmalicious activitymalicious network activitymalicious softwaremalwaremalware capturemanualmirai botnetnetworknetwork attacksnetwork infrastructurenetwork intrusionnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningpassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationproxyransomwarereconnaissanceremote accessremote servicesresearchedrtbhscanscannerscanning activitysecurity operationssecurity policyservice scansftp attacksocial engineeringsocradar honeypotssh attackssh monitoringt1018t1021t1021.001t1021.002t1021.004t1040t1041t1046t1055t1056.001t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1550t1550.002t1563t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp protocoltcp/23telecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetpotceunited kingdomweb traffic

Activity Timeline

1 total obs
Apr 5Apr 5

Threat Activity Heatmap

· Peak: 2026-04-05
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address with a significant score of 45.06, represents a substantial and immediate threat to organizational security. Its presence in our environment strongly suggests potential compromise attempts, ranging from aggressive reconnaissance and brute-force attacks to more advanced exploitation techniques targeting critical services. Failure to address this IOC promptly could lead to unauthorized access, data exfiltration, system compromise, and denial-of-s…

Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
13
Reports
First seenJun 8, 2024
Last seenApr 5, 2026
GeolocationIN
CountryIndia
LocationMumbai, GJ
ASNAS24560
OrgBharti Airtel Ltd.
Coords23.0276, 72.5871
Proxy

VirusTotal

Not checked

WHOIS

description
2025-04-07T13:09:35.078Z Honeypot : Cowrie : Source: 122.179.135.67 Data: Connection lost after 12 seconds
raw
inetnum: 122.179.128.0 - 122.179.191.255 netname: ABTS-DSL-MUM descr: Bharti Airtel Services Limited, 6th floor , Interface Building No 7, Link Road, Mumbai Maharastra-400064 descr: Email: [email protected] country: IN geoloc: 19.185189 72.830009 admin-c: NA40-AP tech-c: NA40-AP abuse-c: AB914-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-IN-TELEMEDIA mnt-irt: IRT-BHARTI-TELEMEDIA-IN last-modified: 2021-03-31T13:02:51Z source: APNIC irt: IRT-BHARTI-TELEMEDIA-IN address: Bharti Airtel Ltd. e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NS282-AP tech-c: NS282-AP auth: # Filtered remarks: [email protected] is invalid remarks: [email protected] was validated on 2025-06-01 mnt-by: MAINT-IN-TELEMEDIA last-modified: 2025-06-01T05:41:11Z source: APNIC role: ABUSE BHARTITELEMEDIAIN country: ZZ address: Bharti Airtel Ltd. phone: +000000000 e-mail: [email protected] admin-c: NS282-AP tech-c: NS282-AP nic-hdl: AB914-AP remarks: Generated from irt object IRT-BHARTI-TELEMEDIA-IN remarks: [email protected] is invalid remarks: [email protected] was validated on 2025-06-01 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-06-01T05:41:45Z source: APNIC person: Network Administrator nic-hdl: NA40-AP e-mail: [email protected] address: Bharti Airtel Ltd. address: ISP Division - Transport Network Group address: Plot no.16 , Udyog Vihar , Phase -IV , Gurgaon - 122015 , Haryana , INDIA address: Phase III, New Delhi-110020, INDIA phone: +91-124-4222222 fax-no: +91-124-4244017 country: IN mnt-by: MAINT-IN-BBIL last-modified: 2018-12-18T12:52:19Z source: APNIC route: 122.179.135.0/24 descr: ABTS-WEST-DSL-PUNE descr: ABTS-PUNE descr: 6th Floor, Interface, Bldg No 7, Link Road, descr: Malad (W), descr: Mumbai, Maharashtra descr: INDIA country: IN origin: AS24560 mnt-by: MAINT-IN-TELEMEDIA last-modified: 2009-07-24T14:48:34Z source: APNIC
references
https://github.com/telekom-security/tpotce, https://list.rtbh.com.tr/output.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 2 months ago
Appeared in 13 threat reports