IOC Radar
IPMediumSignal 73/100

141.98.10.88

Location
LithuaniaLithuania
Kaunas, Kauno apskritis
ASN
AS209605
UAB Host Baltic
First Seen
Aug 26, 2022
Last Seen
Jun 11, 2026
Aug 26
First Seen
1396d ago
Jun 11
Last Seen
11d ago
27
Reports
source reports
73%
Confidence
medium
Found in 27 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
73%
Signal Score
73 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

65 techniques

Network Information

CountryLTLithuania
RegionKaunas, Kauno apskritis
ASNAS209605
OrganizationUAB Host Baltic

Feed Intelligence Summary

27 reports73% confidence
27
Source reports
73%
Confidence score
Category tags
abuseactive scanactive scanningaptasyncratauthentication attemptsbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute force attemptsbrute-forcebruteforcec2cobaltstrikecommand & controlcommand and controlcommunication protocolcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase securitydcratddosdecoy systemdeimosdenial of servicedionaeadionaea activitydionaea honeypotdistributed attackseuropeexfiltration attemptexploit probingexploitation activityexploited hostfattfatt analysisftpftp attacksftp brute-forcehackinghak5_cloud_c2havochoneytrap activityhoneytrap honeypothttp scannerhttpsidentity & access exploitationimapimap attackinjection activityinjection attackslithuanialtmailoney activitymailoney honeypotmalicious activitymalicious communication detectedmalicious softwaremalwaremalware behaviourmalware capturemalware deliverymythicnetsupportratnetworknetwork attacksnetwork intrusion attemptsnetwork protocolnetwork scanningnetwork securitynetwork trafficp0fp0f signaturespassword attacksphishingphishing attackphishing trapportscanprocess injectionprotocol exploitationproxyqakbotransomwareratrat activityreconnaissanceremcos trojanremote accessremote servicesresearchedresource hijackingreverse_sshscannerscannerssensor-taggedsentrypeer activitysentrypeer botnetservice scansip attackssliversmtpsmtp attackersmtp attackssocial engineeringspamsshssh attackssh attacksssh monitoringsupershellsuricata alertst-pott1003t1003.001t1003.002t1003.003t1003.004t1003.005t1005t1016t1016.001t1016.002t1018t1021t1021.001t1021.002t1021.003t1021.004t1021.005t1021.006t1027t1040t1041t1048t1048.001t1048.002t1048.003t1053t1053.005t1055t1059t1059.001t1059.003t1059.004t1071t1071.001t1076t1078t1078.002t1105t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1567t1567.001t1567.002t1568t1573t1573.001t1573.002t1595t1595.001t1595.002t1595.003tannertanner activitytcp protocoltelnet threattftpthreat actorthreat detectionthreat intelligencetor nodetpotvoip attackvultrweb app attackweb spamweb traffic

Activity Timeline

1 total obs
Jun 11Jun 11

Threat Activity Heatmap

· Peak: 2026-06-11
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
73
SIGNAL
Signal Score
73%
Confidence
27
Reports
First seenAug 26, 2022
Last seenJun 11, 2026
GeolocationLT
CountryLithuania
LocationKaunas, Kauno apskritis
ASNAS209605
OrgUAB Host Baltic
Coords54.9072, 24.0019

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=mailoney, p0f; threshold?1; private IPs excluded. geo=LT; ports=25 Location=Sydney, Australia.
raw
inetnum: 141.98.10.0 - 141.98.10.255 netname: LT-HOSTBALTIC-10 country: LT admin-c: PV7242-RIPE tech-c: PV7242-RIPE status: ASSIGNED PA mnt-by: mnt-lt-hostbaltic-1 created: 2019-01-10T13:11:38Z last-modified: 2019-01-10T13:11:38Z source: RIPE person: Paulius Vancugovas address: Draugystes g. 19 address: 51230 address: Kaunas address: LITHUANIA phone: +37067358624 nic-hdl: PV7242-RIPE mnt-by: mnt-lt-hostbaltic-1 created: 2019-01-08T13:14:38Z last-modified: 2019-01-09T13:14:40Z source: RIPE route: 141.98.10.0/24 origin: AS209605 mnt-by: mnt-lt-hostbaltic-1 created: 2019-01-23T11:43:09Z last-modified: 2019-01-23T11:43:09Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 11 days ago
Appeared in 27 threat reports