IOC Radar
IPMediumSignal 27/100

122.180.154.127

Location
IndiaIndia
New Delhi, DL
ASN
AS24560
Bharti Airtel Limited
First Seen
Apr 9, 2025
Last Seen
Apr 8, 2026
Apr 9
First Seen
441d ago
Apr 8
Last Seen
77d ago
13
Reports
source reports
27%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
27%
Signal Score
27 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

21 techniques

Network Information

CountryINIndia
RegionNew Delhi, DL
ASNAS24560
OrganizationBharti Airtel Limited

Feed Intelligence Summary

13 reports27% confidence
13
Source reports
27%
Confidence score
Category tags
abuseactive scanactive scanningasiaattackaustraliaauthenticationauthentication abusebad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute force attemptscommand and controlcompromised credentialscowrie honeypotcredential accesscredential stuffingdata exfiltrationdata store exposuredecoy systemdistributed attacksexploitation activityhackingidentity & access exploitationindiaindicatorinjection activitymalicious activitymalicious softwaremalwarenetworkoceaniapassword attacksprocess injectionreconnaissanceremote accessresearchedscannerscanning activitysftp attackssh attackssh monitoringt1021.004t1041t1055t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1589t1595t1595.001t1595.002t1595.003threat actorthreat intelligencetor nodetpotce

Activity Timeline

1 total obs
Apr 8Apr 8

Threat Activity Heatmap

· Peak: 2026-04-08
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
27
SIGNAL
Signal Score
27%
Confidence
13
Reports
First seenApr 9, 2025
Last seenApr 8, 2026
GeolocationIN
CountryIndia
LocationNew Delhi, DL
ASNAS24560
OrgBharti Airtel Limited
Coords28.6328, 77.2204

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
inetnum: 122.176.0.0 - 122.183.255.255 netname: BHARTI-IN descr: BHARTI Airtel Ltd. descr: ISP Division ,AES - Carrier descr: 234 , Okhala Phase III descr: NEW DELHI descr: INDIA country: IN org: ORG-BAL1-AP admin-c: NA40-AP tech-c: NA40-AP abuse-c: AB914-AP status: ALLOCATED PORTABLE mnt-by: APNIC-HM mnt-lower: MAINT-IN-BBIL mnt-routes: MAINT-IN-BBIL mnt-irt: IRT-BHARTI-TELEMEDIA-IN last-modified: 2020-07-07T05:00:54Z source: APNIC irt: IRT-BHARTI-TELEMEDIA-IN address: Bharti Airtel Ltd. e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NS282-AP tech-c: NS282-AP auth: # Filtered remarks: [email protected] was validated on 2025-12-04 remarks: [email protected] was validated on 2026-02-03 mnt-by: MAINT-IN-TELEMEDIA last-modified: 2026-02-03T23:14:59Z source: APNIC organisation: ORG-BAL1-AP org-name: Bharti Airtel Limited org-type: LIR country: IN address: Transport Network Group address: 234, Okhla Phase III phone: +911244282398 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:14:45Z source: APNIC role: ABUSE BHARTITELEMEDIAIN country: ZZ address: Bharti Airtel Ltd. phone: +000000000 e-mail: [email protected] admin-c: NS282-AP tech-c: NS282-AP nic-hdl: AB914-AP remarks: Generated from irt object IRT-BHARTI-TELEMEDIA-IN remarks: [email protected] was validated on 2025-12-04 remarks: [email protected] was validated on 2026-02-03 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2026-02-03T23:15:15Z source: APNIC person: Network Administrator nic-hdl: NA40-AP e-mail: [email protected] address: Bharti Airtel Ltd. address: ISP Division - Transport Network Group address: Plot no.16 , Udyog Vihar , Phase -IV , Gurgaon - 122015 , Haryana , INDIA address: Phase III, New Delhi-110020, INDIA phone: +91-124-4222222 fax-no: +91-124-4244017 country: IN mnt-by: MAINT-IN-BBIL last-modified: 2018-12-18T12:52:19Z source: APNIC route: 122.180.154.0/24 descr: TELEMEDIA-SMB-DEL descr: BHARTI Airtel Ltd. TELEMEDIA SERVICES descr: Broadband and Telephone Service 224, descr: Okhla Phase III, descr: New Delhi, Delhi descr: INDIA country: IN origin: AS24560 mnt-by: MAINT-IN-TELEMEDIA last-modified: 2009-08-25T09:06:39Z source: APNIC route: 122.180.154.0/24 descr: TELEMEDIA-SMB-DEL descr: BHARTI Airtel Ltd. TELEMEDIA SERVICES descr: Broadband and Telephone Service 224, descr: Okhla Phase III, descr: New Delhi, Delhi descr: INDIA country: IN origin: AS45514 mnt-by: MAINT-IN-TELEMEDIA last-modified: 2008-12-30T04:08:05Z source: APNIC
references
https://github.com/telekom-security/tpotce, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 13 threat reports