IPMediumSignal 40/100

`157.10.161.119`

Location

Indonesia

Cicurug, West Java

ASN

AS136052

PT Toko Masa Depan

First Seen

Nov 7, 2024

Last Seen

Apr 2, 2026

Nov 7

First Seen

583d ago

Apr 2

Last Seen

72d ago

Reports

source reports

40%

Confidence

medium

Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

40%

Signal Score

40 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

38 techniques

Network Information

Country

Indonesia

RegionCicurug, West Java

ASNAS136052

OrganizationPT Toko Masa Depan

Feed Intelligence Summary

15 reports40% confidence

Source reports

40%

Confidence score

Category tags

abuseaccess controlactive scanactive scanningasiaattackaustraliaauthentication attackauthentication attacksauthentication failurebad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forcc2 communicationcommand & controlcommand and controlcowrie honeypotcredential accesscredential stuffingctadata exfiltrationdata store exposureddosddos attackddos participationdecoy systemdenial of servicedistributed attackseuropeexploit activityexploitation activityexploitation attemptexploited hostfail2ban triggeredftp brute forcehackingidentity & access exploitationindicatorindonesiainfoinitial accessinjection activityjapanlateral movementlogin attemptsmalicious activitymalicious domainmalicious softwaremalwarenetworknetwork intrusionnetwork probenetwork reconnaissancenetwork scanningnoticeoceaniapassword attacksphishingprocess injectionreconnaissanceremote accessresearchedscannersecurity operationssecurity policysftp attackssh attackssh monitoringt1021t1021.001t1021.004t1040t1041t1046t1055t1059t1059.004t1068t1071t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1203t1486t1496t1499.001t1499.002t1499.003t1565t1566t1566.001t1573t1573.001t1589t1595t1595.001t1595.002t1595.003threat actorthreat intelligencethreat preventiontor nodeunauthorized access attemptunauthorized access attemptsunited kingdomunited statesweb application attackweb brute forceweb exploitation

Activity Timeline

1 total obs

Apr 2Apr 2

Threat Activity Heatmap

· Peak: 2026-04-02

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Minimal

Threat ScoreMedium Risk

SIGNAL

Signal Score

40%

Confidence

Reports

First seenNov 7, 2024

Last seenApr 2, 2026

GeolocationID

CountryIndonesia

LocationCicurug, West Java

ASNAS136052

OrgPT Toko Masa Depan

Coords35.6897, 139.6895

VirusTotal

Not checked

WHOIS

description: Banned by Fail2Ban [sshd]
raw: inetnum: 157.10.160.0 - 157.10.161.255 netname: IDNIC-TMS-ID descr: PT Toko Masa Depan descr: Corporate / Direct Member IDNIC descr: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda descr: Sukabumi, Jawa Barat 43357 admin-c: FF384-AP tech-c: FF384-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-TMS-ID mnt-routes: MAINT-ID-TMS status: ASSIGNED PORTABLE last-modified: 2024-01-10T09:34:29Z source: APNIC irt: IRT-TMS-ID address: PT. TOKO MASA DEPAN address: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda address: Sukabumi, Jawa Barat 43357 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: FF384-AP tech-c: FF384-AP auth: # Filtered mnt-by: MAINT-ID-TMS last-modified: 2024-01-10T08:54:22Z source: APNIC person: Fahmi Firdaus address: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda address: Sukabumi, Jawa Barat 43357 country: ID phone: +6281809028894 e-mail: [email protected] nic-hdl: FF384-AP mnt-by: MAINT-ID-TMS last-modified: 2024-01-10T08:55:39Z source: APNIC route: 157.10.160.0/23 descr: Route object of PT. Toko Masa Depan origin: AS136052 mnt-by: MAINT-ID-TMS country: ID last-modified: 2024-01-12T02:11:18Z source: APNIC inetnum: 157.10.160.0 - 157.10.161.255 netname: IDNIC-TMS-ID descr: PT Toko Masa Depan descr: Corporate / Direct Member IDNIC descr: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda descr: Sukabumi, Jawa Barat 43357 admin-c: FF384-AP tech-c: FF384-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-TMS-ID mnt-routes: MAINT-ID-TMS status: ASSIGNED PORTABLE last-modified: 2024-01-12T02:14:29Z source: IDNIC irt: IRT-TMS-ID address: PT. TOKO MASA DEPAN address: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda address: Sukabumi, Jawa Barat 43357 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: FF384-AP tech-c: FF384-AP auth: # Filtered mnt-by: MAINT-ID-TMS last-modified: 2024-01-12T02:14:29Z source: IDNIC person: Fahmi Firdaus address: Perumahan Mutiara Bumi Metro Blok A01 No.1, Parung Kuda address: Sukabumi, Jawa Barat 43357 country: ID phone: +6281809028894 e-mail: [email protected] nic-hdl: FF384-AP mnt-by: MAINT-ID-TMS last-modified: 2024-01-12T02:14:38Z source: IDNIC route: 157.10.160.0/23 descr: Route object of PT. Toko Masa Depan origin: AS136052 mnt-by: MAINT-ID-TMS country: ID last-modified: 2024-01-12T02:14:29Z source: IDNIC
references: https://github.com/telekom-security/tpotce, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://redpiranha.net

`157.10.161.119`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy