IPMediumSignal 54/100
144.208.127.81
Location
United StatesNew York, New York
ASN
AS395092
Shock Hosting LLC
First Seen
Jun 5, 2020
Last Seen
Jun 2, 2026
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
54%
Signal Score
54 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionNew York, New York
ASNAS395092
OrganizationShock Hosting LLC
Feed Intelligence Summary
7 reports54% confidence
7
Source reports
54%
Confidence score
Category tags
active scanattachment phishingattachment-based phishingbecbec phishingbrand impersonationbrand_impersonationbrute forcebusiness_email_compromisecommunication protocolcredential harvestingcredential phishingcredential stuffingcredential theftcredential_harvestingcredential_theftemail-based attackemail-borne threatfake websitefake websitesfinancefraudhttp scannerhttpsidentity & access exploitationindicatorinformation theftinitial_accessinjection activityioclink injectionlink manipulationlink obfuscationlink redirectionlink-based phishingmalicious attachmentmalicious domainmalicious linkmalicious linksmalicious_attachmentmalicious_urlmalwaremalware deliverymalware distributionmalware droppermalware phishingnetworknorth americapayload deliveryphishingphishing activityphishing attackphishing campaignphishing indicatorsphishing urlphishing-databasephishing_campaignransomwareresearchedscams & fraudsecurity operationsself-signedsmtpsocial engineeringspearphishingt1027t1036t1056.001t1059t1071.001t1078t1189t1190t1192t1204t1204.001t1204.002t1499.002t1534t1552t1552.002t1566t1566.001t1566.002t1566.003t1566.004t1567.001t1583t1598t1598.003threat actorthreat indicatorsthreat intelligencethreat intelligence indicatorsthreat_indicatorstor nodeunited statesunknown threat actorusweb securityweb trafficwhaling attack
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
· Peak: 2026-06-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
54
SIGNAL
Signal Score
54%
Confidence
7
Reports
First seenJun 5, 2020
Last seenJun 2, 2026
GeolocationUS
CountryUnited States
LocationNew York, New York
ASNAS395092
OrgShock Hosting LLC
Coords40.7126, -74.0066
VirusTotal
Not checked
WHOIS
- description
- Phishing indicators. Date: Apr 8, 2026. Part 1/566. For more threat intelligence visit https://ltna.com.au/cyber
- raw
- NetRange: 144.208.124.0 - 144.208.127.255 CIDR: 144.208.124.0/22 NetName: SH-335 NetHandle: NET-144-208-124-0-1 Parent: NET144 (NET-144-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Shock Hosting LLC (SH-335) RegDate: 2016-05-18 Updated: 2021-12-10 Ref: https://rdap.arin.net/registry/ip/144.208.124.0 OrgName: Shock Hosting LLC OrgId: SH-335 Address: 371 Hoes Lane, Suite 200 City: Piscataway StateProv: NJ PostalCode: 08854 Country: US RegDate: 2014-11-21 Updated: 2020-09-26 Ref: https://rdap.arin.net/registry/entity/SH-335 OrgAbuseHandle: ABUSE4915-ARIN OrgAbuseName: Abuse Department OrgAbusePhone: +1-732-812-8024 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE4915-ARIN OrgNOCHandle: NOC32119-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-732-812-8022 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32119-ARIN OrgTechHandle: SUPPO1542-ARIN OrgTechName: Support Department OrgTechPhone: +1-732-812-8022 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/SUPPO1542-ARIN
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 6 years ago · Last seen 17 days ago
Appeared in 7 threat reports