IPMediumSignal 86/100

`147.182.200.169`

Location

United States

Santa Clara, California

ASN

AS14061

DigitalOcean, LLC

First Seen

Dec 14, 2024

Last Seen

Feb 12, 2026

Dec 14

First Seen

556d ago

Feb 12

Last Seen

131d ago

Reports

source reports

86%

Confidence

medium

Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

86%

Signal Score

86 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

51 techniques

Network Information

Country

United States

RegionSanta Clara, California

ASNAS14061

OrganizationDigitalOcean, LLC

Feed Intelligence Summary

13 reports86% confidence

Source reports

86%

Confidence score

Category tags

abuseaccess controlactive scanningadbhoney activityadbhoney exploitsadbhoney honeypotattackbad web botblog spambotnetbrute forcebrute force attackbrute force attemptbrute force attemptsbrute_forcecisco attackcisco devicecisco device targetingcisco exploit attemptscisco_exploitcommand and controlcommunication protocolcowrie activitycowrie honeypotcowrie ssh attackscowrie_attackcredential accesscredential harvestingcredential stuffingcredential_accessdata exfiltrationdatabase attackdatabase securityddosddos attackdecoy systemdenial of servicedevice managementdionaea activitydionaea capturedionaea honeypotdionaea malware collectiondistributed attacksenterprise networkingeuropeexploitexploit attemptexploited hostfinlandfranceftp brute forceftp brute-forcegermanyhackingheralding activityheralding behaviorhoneynet connecthoneytrap honeypothttp brute forceindicatorinitial_accessinjection attackslamplamp attacklamp exploit attemptslamp exploitation attemptslamp stack targetinglamp_exploitlateral movementlogin attemptmalicious activitymalicious network activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionnetworknetwork enumerationnetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork scanningnetwork securitynetwork service scanningnorth americapassword attackpassword attacksphishing attackping of deathpolandprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanning activityscripting attackssecurity policysentrypeer activitysentrypeer botnetsentrypeer detectionsftp access attemptssftp activitysftp attacksftp_attacksip brute forcesip scanningsip_attacksmb brute forcesmtp brute forcesocial engineeringsocradar honeypotssh attackssh monitoringssh_bruteforcet1021t1021.001t1021.002t1021.003t1021.004t1021.005t1021.006t1040t1041t1046t1055t1059t1059.001t1059.003t1059.004t1059.007t1068t1071t1071.001t1071.002t1071.003t1071.004t1071.005t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1203t1204.002t1210t1486t1496t1499.001t1499.002t1499.003t1555t1563t1565t1566.001t1566.002t1566.003t1589t1592t1595t1595.001t1595.002t1595.003tannertcp scantelecommunicationstelnet scanningtelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontpotceudp scanunauthorized access attemptunited statesvoipvoip attackweb application attackweb attackweb exploitationweb spam

Activity Timeline

1 total obs

Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Threat ScoreHigh Risk

SIGNAL

Signal Score

86%

Confidence

Reports

First seenDec 14, 2024

Last seenFeb 12, 2026

GeolocationUS

CountryUnited States

LocationSanta Clara, California

ASNAS14061

OrgDigitalOcean, LLC

Coords37.3986, -121.9640

VirusTotal

Not checked

WHOIS

description: 2025-07-05T05:08:25.762Z Honeypot : Tanner : Source: 147.182.200.169 : Port: 80 Post Data: {'version': '0.6.0', 'response': {'message': {'sess_uuid': '0acdcf04-c624-4413-92b6-a5f418cf104a', 'detection': {'version': '0.6.0', 'order': 1, 'name': 'index', 'type': 1}}}}
raw: NetRange: 147.182.128.0 - 147.182.255.255 CIDR: 147.182.128.0/17 NetName: DIGITALOCEAN-147-182-128-0 NetHandle: NET-147-182-128-0-1 Parent: NET147 (NET-147-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2020-01-17 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/147.182.128.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
references: https://github.com/telekom-security/tpotce

`147.182.200.169`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey