IOC Radar
IPMediumSignal 37/100

144.34.181.88

Location
United StatesUnited States
Los Angeles, CA
ASN
AS25820
Cluster Logic Inc
First Seen
Dec 23, 2024
Last Seen
May 11, 2026
Dec 23
First Seen
538d ago
May 11
Last Seen
34d ago
17
Reports
source reports
37%
Confidence
medium
Found in 17 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
37%
Signal Score
37 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

38 techniques

Network Information

CountryUSUnited States
RegionLos Angeles, CA
ASNAS25820
OrganizationCluster Logic Inc

Feed Intelligence Summary

17 reports37% confidence
17
Source reports
37%
Confidence score
Category tags
abuseaccess controlaccount accessactive scanactive scanningatif feedattackattack source: gbaustraliaauthenticationauthentication attackauthentication attemptsauthentication brute forceauthentication failuresauto-generated securityautomated attackbad reputationbanlist feedbinary defenseblacklisted ipbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forccisco devicecommand and controlcowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposureddosdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkingeuropeexploitationexploitation activityftp brute forcehttp brute forceidentity & access exploitationinfoinfrastructure acquisitionreconnaissanceinjection activitylateral movementlogin attacklogin attemptsmalicious activitymalicious softwaremalwaremanualmultiple failed loginsnetworknetwork infrastructurenetwork intrusionnetwork scanningnetwork securitynetwork service scanningnorth americanoticeoceaniapassword attackpassword attacksphishingphishing attackprivilege escalationprocess injectionproxyransomwarereconnaissanceremote accessremote servicesresearchedscannerscanning activitysecurity monitoringsecurity operationssecurity policyservice scansftp attacksocial engineeringssh attackssh monitoringt1021t1021.001t1021.004t1041t1055t1059t1071.001t1076t1078t1078.002t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1555t1555.003t1563t1565t1566.001t1566.002t1566.003t1587.001t1588.004t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003threat actorthreat intelligencethreat preventiontor nodeunauthorized accessunauthorized access attemptsunited kingdomunited statesunited states of americausus source ipvalid accounts

Activity Timeline

1 total obs
May 11May 11

Threat Activity Heatmap

· Peak: 2026-05-11
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
37
SIGNAL
Signal Score
37%
Confidence
17
Reports
First seenDec 23, 2024
Last seenMay 11, 2026
GeolocationUS
CountryUnited States
LocationLos Angeles, CA
ASNAS25820
OrgCluster Logic Inc
Coords34.0494, -118.2661

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
Cluster Logic Inc CL-1210 (NET-144-34-128-0-1) 144.34.128.0 - 144.34.255.255 IT7 Networks Inc CL-144-34-128-0-17 (NET-144-34-128-0-2) 144.34.128.0 - 144.34.255.255
references
https://redpiranha.net, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce, https://blocklist.greensnow.co/greensnow.txt, https://www.binarydefense.com/banlist.txt, https://lists.blocklist.de/lists/all.txt, https://rules.emergingthreats.net/blockrules/compromised-ips.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 17 threat reports