IOC Radar
IPHighVerifiedSignal 20/100

138.99.38.120

Location
United StatesUnited States
New York, New York
ASN
AS263740
IT Communications
First Seen
May 24, 2026
Last Seen
May 24, 2026
May 24
First Seen
23d ago
May 24
Last Seen
23d ago
2
Reports
source reports
20%
Confidence
high
Found in 2 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
20%
Signal Score
20 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionNew York, New York
ASNAS263740
OrganizationIT Communications

Feed Intelligence Summary

2 reports20% confidence
2
Source reports
20%
Confidence score
Category tags
active scanexploitation activityhackingindicatornetworknorth americaresearchedscannerunited statesusweb app attack

Activity Timeline

1 total obs
May 24May 24

Threat Activity Heatmap

· Peak: 2026-05-24
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
20
SIGNAL
Signal Score
20%
Confidence
2
Reports
First seenMay 24, 2026
Last seenMay 24, 2026
Verified IOC
GeolocationUS
CountryUnited States
LocationNew York, New York
ASNAS263740
OrgIT Communications
Coords40.7126, -74.0066

VirusTotal

Not checked

WHOIS

raw
NetRange: 138.99.0.0 - 138.99.255.255 CIDR: 138.99.0.0/16 NetName: LACNIC-ERX-138-99-0-0 NetHandle: NET-138-99-0-0-1 Parent: NET138 (NET-138-0-0-0-0) NetType: Transferred to LACNIC OriginAS: Organization: Latin American and Caribbean IP address Regional Registry (LACNIC) RegDate: 2010-11-19 Updated: 2010-11-19 Comment: This IP address range is under LACNIC responsibility Comment: for further allocations to users in LACNIC region. Comment: Please see http://www.lacnic.net/ for further details, Comment: or check the WHOIS server located at http://whois.lacnic.net Ref: https://rdap.arin.net/registry/ip/138.99.0.0 ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois ResourceLink: whois.lacnic.net OrgName: Latin American and Caribbean IP address Regional Registry OrgId: LACNIC Address: Rambla Republica de Mexico 6125 City: Montevideo StateProv: PostalCode: 11400 Country: UY RegDate: 2002-07-27 Updated: 2018-03-15 Ref: https://rdap.arin.net/registry/entity/LACNIC ReferralServer: whois://whois.lacnic.net ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois OrgAbuseHandle: LWI100-ARIN OrgAbuseName: LACNIC Whois Info OrgAbusePhone: +598-2604-2222 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/LWI100-ARIN OrgTechHandle: LACNIC-ARIN OrgTechName: LACNIC Whois Info OrgTechPhone: +598-2604-2222 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/LACNIC-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 23 days ago · Last seen 23 days ago
Appeared in 2 threat reports