IOC Radar
IPMediumSignal 65/100

154.216.16.83

Location
United StatesUnited States
San Jose, Vilniaus apskritis
ASN
AS11404
Wave Broadband
First Seen
Dec 15, 2024
Last Seen
Apr 17, 2026
Dec 15
First Seen
547d ago
Apr 17
Last Seen
59d ago
7
Reports
source reports
65%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
65%
Signal Score
65 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryUSUnited States
RegionSan Jose, Vilniaus apskritis
ASNAS11404
OrganizationWave Broadband

Feed Intelligence Summary

7 reports65% confidence
7
Source reports
65%
Confidence score
Category tags
active scanbotnetbotnet activitybrute forcec2command & controlcommand and controlcopycredential harvestingcredential stuffingdata exfiltrationdata store exposuredeletedistributed attackseuropeexploitation activityguardhighidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activitylithuaniamalicious softwaremalwaremanualmediumnetworknorth americaphishingphishing attackprocess injectionreadresearchedsocial engineeringt1010t1018t1027t1036t1047t1055t1056t1057t1070t1071t1071.001t1082t1083t1095t1486t1496t1497t1499.002t1499.003t1518t1547t1562t1565t1566.001t1566.002t1566.003t1573t1574t1587.001t1590.001top destinationtop sourceunited stateswriteyara detections

Activity Timeline

1 total obs
Apr 17Apr 17

Threat Activity Heatmap

· Peak: 2026-04-17
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
65
SIGNAL
Signal Score
65%
Confidence
7
Reports
First seenDec 15, 2024
Last seenApr 17, 2026
GeolocationUS
CountryUnited States
LocationSan Jose, Vilniaus apskritis
ASNAS11404
OrgWave Broadband
Coords37.2416, -121.7830

VirusTotal

Not checked

WHOIS

description
CC=HK ASN=AS135357 shenzhen katherine heng technology information co. ltd.
raw
NetRange: 154.0.0.0 - 154.255.255.255 CIDR: 154.0.0.0/8 NetName: NET154 NetHandle: NET-154-0-0-0-0 Parent: () NetType: Allocated to AfriNIC OriginAS: Organization: African Network Information Center (AFRINIC) RegDate: 1993-05-01 Updated: 2010-11-09 Ref: https://rdap.arin.net/registry/ip/154.0.0.0 ResourceLink: http://afrinic.net/en/services/whois-query ResourceLink: whois.afrinic.net OrgName: African Network Information Center OrgId: AFRINIC Address: Level 11ABC Address: Raffles Tower Address: Lot 19, Cybercity City: Ebene StateProv: PostalCode: Country: MU RegDate: 2004-05-17 Updated: 2015-05-04 Comment: AfriNIC - http://www.afrinic.net Comment: The African & Indian Ocean Internet Registry Ref: https://rdap.arin.net/registry/entity/AFRINIC ReferralServer: whois://whois.afrinic.net ResourceLink: http://afrinic.net/en/services/whois-query OrgAbuseHandle: GENER11-ARIN OrgAbuseName: Generic POC OrgAbusePhone: +230 4666616 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN OrgTechHandle: GENER11-ARIN OrgTechName: Generic POC OrgTechPhone: +230 4666616 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 7 threat reports