IOC Radar
IPMediumSignal 64/100

123.49.41.210

Location
BangladeshBangladesh
Dhaka, Dhaka
ASN
AS17494
Brosis Communication Ltd
First Seen
Jun 16, 2022
Last Seen
Jun 13, 2026
Jun 16
First Seen
1471d ago
Jun 13
Last Seen
13d ago
24
Reports
source reports
64%
Confidence
medium
Found in 24 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
64%
Signal Score
64 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

66 techniques

Network Information

CountryBDBangladesh
RegionDhaka, Dhaka
ASNAS17494
OrganizationBrosis Communication Ltd

Feed Intelligence Summary

24 reports64% confidence
24
Source reports
64%
Confidence score
Category tags
abuseabuseipdbaccess controlaccount compromiseactive scanactive scanningadbhoney honeypotaerospace & defenseapacheapache attackeraptasiaattackattacker ipsaustraliaauthenticationauto-generated securityautomotive manufacturingb0natbad reputationbad web botbangladeshbdblacklist candidateblog spambotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute force attacksbrute force attemptbrute force attemptsbrute-forcebruteforcec2c2 communicationcanadacertcisco devicecisco exploitationcisco exploitation attemptcitrix exploitation attemptcitrix securitycivil servicescloud infrastructurecloud infrastructure attackcloud servicescommand & controlcommand and controlcommunication protocolcompromised hostcompromised host blockingcowriecowrie activitycowrie honeypotcowrie interactionscredential accesscredential guessingcredential harvestingcredential stuffingctacyber securitydata encryptiondata exfiltrationdata store exposuredatabase attackdatabase securityddosddos activityddos attackddos attacksdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedevice managementdigital oceandionaeadionaea activitydionaea honeypotdionaea interactionsdistributed attacksdnsdns attackelectronics manufacturingencryptionenterprise networkingenterprise securityeuropeexploitexploit attemptexploit kit activityexploit public-facing applicationexploitationexploitation activityexploited hostexternal threatfattftpftp attacksftp brute forceftp scangovernment technologyhackinghoneytrap honeypothttp brute forcehttp scannerhttp scanninghttpshttps scanningidentity & access exploitationindicatorindustrial automationindustrial iotindustrial productioninformation technologyinfrastructure acquisitionreconnaissanceinitial accessinjection activityinjection attacksinternet of thingsinternet-wide scanintrusion detectioniociot botnetiot securityiot/ics attackipv4ircit infrastructurelamplamp exploit attemptslamp exploitationlamp exploitation attemptslamp stack attackslamp vulnerability scanlateral movementlogin attemptsmailoney honeypotmalicious activitymalicious activity detectedmalicious login attemptsmalicious softwaremalicious software detectionmalwaremalware behaviourmalware capturemalware detectionmalware distributionmalware propagationmanualmanufacturing technologymilitary operationsmirai botnetmssqlnational securitynetworknetwork attacksnetwork discoverynetwork enumerationnetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork probenetwork probingnetwork protocolnetwork reconnaissancenetwork scannetwork scanningnetwork securitynetwork service scanningnetwork traffic analysisnextraynorth americaoceaniaopenctip0fpassword attackpassword attackspassword crackingphishingphishing attackphishing trapping of deathportscanpotential credential theftpotential malware deliverypotential malware infectionprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlransomwarereconnaissanceredis honeypotregulatory agenciesremote accessremote servicesresearchedresource hijackingrtbhscanscannerscannersscanning activityscripting attackssecurity operationssecurity policyself-signedsensor-taggedsentrypeer activitysentrypeer botnetservice discoveryservice scansftp activitysftp attacksftp attemptsftp exploitation attemptshell access attemptssipsip attackssip brute forcesip scansip scanningsmtpsmtp brute forcesocial engineeringsocradarsoftware developmentspamsql injectionsql serversshssh attackssh attacksssh monitoringssh scansupply chain attacksupply chain managementsystem accesst1005t1016t1018t1021t1021.001t1021.002t1021.003t1021.004t1040t1041t1046t1047t1053.005t1055t1059t1059.003t1059.004t1059.007t1068t1071t1071.001t1071.004t1076t1077t1078t1083t1087t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1203t1204.002t1210t1486t1496t1497t1499.001t1499.002t1499.003t1550.003t1562t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1573t1583t1583.001t1587.001t1589t1590t1590.001t1595t1595.001t1595.002t1595.003tannertanner interactionstargeting databasetcp protocoltelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetorontotpottsecunauthorized access attemptunauthorized access attemptsunited kingdomunknown threat actorvoipvoip attackvulnerabilityvulnerability scanvulnerability-exploitationvultrvultr tokyoweb app attackweb application attackweb attackweb crawlerweb crawlingweb exploitweb exploitationweb exploitsweb spamweb traffic

Activity Timeline

1 total obs
Jun 13Jun 13

Threat Activity Heatmap

· Peak: 2026-06-13
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
64
SIGNAL
Signal Score
64%
Confidence
24
Reports
First seenJun 16, 2022
Last seenJun 13, 2026
GeolocationBD
CountryBangladesh
LocationDhaka, Dhaka
ASNAS17494
OrgBrosis Communication Ltd
Coords23.7018, 90.3742

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=p0f; threshold?1; private IPs excluded. geo=BD; ports=445 Location=Sydney, Australia.
raw
inetnum: 123.49.41.192 - 123.49.41.223 netname: BROSIS descr: Brosis Communication Ltd, Chittagong country: BD admin-c: HA128-AP tech-c: RM324-AP abuse-c: AB1235-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-BD-BTTB mnt-irt: IRT-BTTB-BD last-modified: 2021-01-18T01:59:47Z source: APNIC irt: IRT-BTTB-BD address: Data and Internet Service address: Bangladesh Telecommunications Company Ltd address: Moghbazar Telephone Bhaban, Dhaka address: address: e-mail: [email protected] abuse-mailbox: [email protected] admin-c: HA128-AP tech-c: MR209-AP auth: # Filtered remarks: [email protected] remarks: [email protected] remarks: [email protected] remarks: [email protected] was validated on 2025-01-28 remarks: [email protected] was validated on 2025-07-29 mnt-by: MAINT-BD-BTTB last-modified: 2025-07-29T13:17:09Z source: APNIC role: ABUSE BTTBBD country: ZZ address: Data and Internet Service address: Bangladesh Telecommunications Company Ltd address: Moghbazar Telephone Bhaban, Dhaka address: address: phone: +000000000 e-mail: [email protected] admin-c: HA128-AP tech-c: MR209-AP nic-hdl: AB1235-AP remarks: Generated from irt object IRT-BTTB-BD remarks: [email protected] was validated on 2025-01-28 remarks: [email protected] was validated on 2025-07-29 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-07-29T13:17:31Z source: APNIC person: Habibur Rahman AKM nic-hdl: HA128-AP e-mail: [email protected] address: Data and Internet Service address: Bangladesh Telecommunications Company Ltd address: Moghbazar Telephone Bhaban, Dhaka phone: +880-1550151169 fax-no: +880-2-8360699 country: BD mnt-by: MAINT-BD-BTTB last-modified: 2008-10-07T08:11:52Z source: APNIC person: Ruhul Quddus Mohammad nic-hdl: RM324-AP e-mail: [email protected] address: Data and Internet service address: BTTB Moghbazar compound address: Dhaka phone: +880-152000497 fax-no: +880-2-9344455 country: BD mnt-by: MAINT-BD-BTTB last-modified: 2008-09-04T07:29:17Z source: APNIC route: 123.49.41.0/24 origin: AS17494 descr: Bangladesh Telegraph & Telephone Board Telejogajog Bhaban 37/E, Eskaton Garden mnt-by: MAINT-BD-BTTB last-modified: 2019-11-12T05:22:27Z source: APNIC route: 123.49.41.0/24 origin: AS45588 descr: Bangladesh Telegraph & Telephone Board Telejogajog Bhaban 37/E, Eskaton Garden mnt-by: MAINT-BD-BTTB last-modified: 2019-11-12T05:27:59Z source: APNIC
references
https://github.com/telekom-security/tpotce, https://list.rtbh.com.tr/output.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, http://cinsscore.com/list/ci-badguys.txt, https://github.com/borestad/blocklist-abuseipdb/blob/main/abuseipdb-s100-3d.ipv4, https://jamesbrine.com.au/vultrparis-mssql-bruteforce-ip-list-2024-05-01/, https://jamesbrine.com.au, https://jamesbrine.com.au/vultrparis-mssql-bruteforce-ip-list-2024-01-11/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 years ago · Last seen 13 days ago
Appeared in 24 threat reports