IOC Radar
IPMediumSignal 50/100

136.232.94.34

Location
IndiaIndia
Kolkata, SK
ASN
AS55836
Reliance Jio Infocomm Limited
First Seen
Dec 18, 2024
Last Seen
Apr 6, 2026
Dec 18
First Seen
542d ago
Apr 6
Last Seen
68d ago
20
Reports
source reports
50%
Confidence
medium
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

45 techniques

Network Information

CountryINIndia
RegionKolkata, SK
ASNAS55836
OrganizationReliance Jio Infocomm Limited

Feed Intelligence Summary

20 reports50% confidence
20
Source reports
50%
Confidence score
Category tags
abuseaccess controlaccount discoveryaccount profilingaccount takeoveractive scanactive scanningasiaatif feedattackaustraliaauthenticationauthentication attackauthentication attacksauto-generated securitybad reputationbanlist feedbinary defensebotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forccisco devicecliftoncommand and controlcompromised credentialscowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredecoy systemdevice managementdigitalocean vpsdistributed attacksenterprise networkingeuropeexploitexploitation activityfail2ban triggeredftp brute forcehackingidentity & access exploitationinindiaindicatorinfoinformation technologyinfrastructure acquisitionreconnaissanceinitial accessinjection activityit infrastructurelateral movementlogin brute forcemalicious activitymalicious payloadmalicious softwaremalwaremanualnetworknetwork infrastructurenetwork intrusionnetwork intrusion attemptnetwork scanningnetwork securitynetwork service scanningnoticeoceaniapassword attackpassword attacksphishingphishing attackprocess injectionransomwarereconnaissanceremote accessremote service exploitationremote servicesresearchedresource developmentscannerscanning activitysecurity operationssecurity policyself-signedservice scansftp attacksocial engineeringsocradar honeypotsoftware developmentssh attackssh monitoringt1005t1018t1021.004t1041t1046t1055t1059t1059.004t1068t1071.001t1078t1078.002t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1195.002t1203t1486t1496t1499.001t1499.002t1499.003t1555t1555.003t1565t1566.001t1566.002t1566.003t1567t1587.001t1588t1588.004t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003threat actorthreat intelligencethreat preventiontor nodetpotceunauthorized accessunited kingdomvpsvulnerabilityvulnerability scan

Activity Timeline

1 total obs
Apr 6Apr 6

Threat Activity Heatmap

· Peak: 2026-04-06
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

The identification of IPv4 address `136.232.94.34` as an Indicator of Compromise (IOC) carries significant implications for organizational security, necessitating immediate attention. With a threat score of 49.536 and no whitelist status, this IP address is strongly associated with hostile activities, particularly brute-force attacks and network scanning. Such activities pose a direct threat of unauthorized access to critical systems, potential credential compromise, and could serve as an initia…

Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
20
Reports
First seenDec 18, 2024
Last seenApr 6, 2026
GeolocationIN
CountryIndia
LocationKolkata, SK
ASNAS55836
OrgReliance Jio Infocomm Limited
Coords27.3222, 88.6144

VirusTotal

Not checked

WHOIS

description
2025-04-18T22:01:16.226Z Honeypot : Cowrie : Source: 136.232.94.34 Data: Connection lost after 2.7 seconds
raw
inetnum: 136.232.0.0 - 136.233.255.255 netname: RELIANCEJIO-IN descr: Reliance Jio Infocomm Limited country: IN org: ORG-RJIL1-AP admin-c: RJIL1-AP tech-c: RJIL1-AP abuse-c: AR1022-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-IN-RELIANCEJIO mnt-routes: MAINT-IN-RELIANCEJIO mnt-irt: IRT-RELIANCEJIO-IN last-modified: 2020-08-19T13:07:30Z source: APNIC irt: IRT-RELIANCEJIO-IN address: Reliance JIO INFOCOMM LTD GHANSOLI INDIA e-mail: [email protected] abuse-mailbox: [email protected] admin-c: IBSP1-AP tech-c: IBSP1-AP auth: # Filtered remarks: [email protected] is invalid mnt-by: MAINT-IN-RELIANCEJIO last-modified: 2025-07-16T13:09:15Z source: APNIC organisation: ORG-RJIL1-AP org-name: Reliance Jio Infocomm Limited org-type: LIR country: IN address: Reliance Coporate IT park LTD address: Ghansoli NaviMumbai phone: +912279670000 fax-no: +912279610099 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:15:41Z source: APNIC role: ABUSE RELIANCEJIOIN country: ZZ address: Reliance JIO INFOCOMM LTD GHANSOLI INDIA phone: +000000000 e-mail: [email protected] admin-c: IBSP1-AP tech-c: IBSP1-AP nic-hdl: AR1022-AP remarks: Generated from irt object IRT-RELIANCEJIO-IN remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-07-16T13:12:16Z source: APNIC role: Reliance Jio Infocomm Limited address: Reliance JIO INFOCOMM LTD GHANSOLI INDIA country: IN phone: +91-44770000 e-mail: [email protected] admin-c: RJIL1-AP tech-c: RJIL1-AP nic-hdl: RJIL1-AP mnt-by: MAINT-IN-RELIANCEJIO last-modified: 2016-03-09T23:55:07Z source: APNIC route: 136.232.80.0/20 origin: AS55836 descr: Reliance Jio Infocomm Limited Reliance Coporate IT park LTD Ghansoli NaviMumbai mnt-by: MAINT-IN-RELIANCEJIO last-modified: 2020-08-14T19:09:25Z source: APNIC
references
https://redpiranha.net, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://github.com/telekom-security/tpotce, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 20 threat reports