IOC Radar
IPLowSignal 53/100

122.180.87.83

Location
IndiaIndia
New Delhi, Delhi
ASN
AS24560
Bharti Airtel Limited
First Seen
Mar 17, 2025
Last Seen
Jun 7, 2026
Mar 17
First Seen
455d ago
Jun 7
Last Seen
8d ago
3
Reports
source reports
53%
Confidence
low
0/91
VirusTotal
detections
Found in 3 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
53%
Signal Score
53 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

36 techniques

Network Information

CountryINIndia
RegionNew Delhi, Delhi
ASNAS24560
OrganizationBharti Airtel Limited

IP Category

Proxy
Proxy server

Feed Intelligence Summary

3 reports53% confidence
3
Source reports
53%
Confidence score
Category tags
access controlactive scanactive scanningasiaattackbad reputationblacklist candidateblacklisted ip activitybotnetbotnet activitybrute forcebrute force attackbrute force attackscommand and controlcommand executioncommunication protocolcredential accesscredential harvestingcredential stuffingdata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attacksdecoy systemdhcpdhcp attacksdigital oceandistributed attackselasticsearchelasticsearch brute forceencryptionexploitation activityexploited hostftpftp brute forcehackingidentity & access exploitationimapinindiaindicatorinformation gatheringinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attacklateral movementldapldap brute forcemalicious activitymalicious softwaremalwarememcached brute forcemirai botnetmssqlmssql brute forcemysql brute forcenetworknetwork attacksnetwork intrusion attemptsnetwork monitoringnetwork probenetwork probingnetwork protocolnetwork scannetwork scanningnetwork securityntpntp amplification attacksoracleoracle brute forcepassword attacksphishingphishing attackportscanpostgresql brute forceprocess injectionprotocol exploitationproxyqhoneypot detectionreconnaissanceredis brute forceremote accessremote servicesresearchedscanscannerscannerssecurity policyserver exploitationservice scansmb brute forcesnmp attackssocial engineeringsocks5socks5 proxy detectionsql injectionssh attackt1021t1021.001t1021.002t1040t1046t1055t1059t1059.003t1059.005t1068t1071.001t1077t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1210t1486t1496t1499.001t1499.002t1499.003t1505.004t1550.003t1562t1565t1566.001t1566.002t1566.003t1595t1595.001t1595.002t1595.003targeting databasetcp protocoltelnet threatthreat actorthreat intelligencethreat preventiontor nodevnc protocol

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
53
SIGNAL
Signal Score
53%
Confidence
3
Reports
First seenMar 17, 2025
Last seenJun 7, 2026
GeolocationIN
CountryIndia
LocationNew Delhi, Delhi
ASNAS24560
OrgBharti Airtel Limited
Coords28.5508, 77.2680
Proxy

VirusTotal

0/ 91vendors flagged
0% detection rateJun 8, 2026

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean Toronto (CA) honeypot

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 8 days ago
Appeared in 3 threat reports