IPMediumSignal 69/100
157.20.182.12
Location
NetherlandsNaaldwijk, South Holland
ASN
AS152485
Hosterdaddy Private Limited
First Seen
Mar 17, 2025
Last Seen
May 21, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryNetherlands
NetherlandsRegionNaaldwijk, South Holland
ASNAS152485
OrganizationHosterdaddy Private Limited
Feed Intelligence Summary
10 reports69% confidence
10
Source reports
69%
Confidence score
Category tags
abusech-threatfox-c2cactive scanactive scanningaptasyncratattackbad reputationbotnetbotnet activitybrute forcec2command & controlcommand and controlcredential accesscredential stuffingdata encryptiondata exfiltrationdata store exposuredistributed attacksencryptioneuropeexploitation activityextortionftphackingidentity & access exploitationindicatorinjection activitymalicious activitymalicious softwaremalwaren-w0rmnetherlandsnetworknetwork enumerationnlpassword attackphishingprocess injectionransomwarereconnaissanceremote access toolresearchedscannersocial media threatssh attacksystem disruptiont1021t1055t1059t1071.001t1105t1110t1110.002t1190t1213t1486t1490t1496t1499.002t1499.003t1547t1565t1566t1595t1595.001t1595.002t1595.003threat actorthreatfox iocstor node
Activity Timeline
May 21May 21
Threat Activity Heatmap
· Peak: 2026-05-21LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
10
Reports
First seenMar 17, 2025
Last seenMay 21, 2026
GeolocationNL
CountryNetherlands
LocationNaaldwijk, South Holland
ASNAS152485
OrgHosterdaddy Private Limited
Coords0.0000, 0.0000
VirusTotal
Not checked
WHOIS
- raw
- NetRange: 157.19.0.0 - 157.20.255.255 CIDR: 157.19.0.0/16, 157.20.0.0/16 NetName: APNIC-ERX-157-16-0-0 NetHandle: NET-157-19-0-0-1 Parent: NET157 (NET-157-0-0-0-0) NetType: Early Registrations, Transferred to APNIC OriginAS: Organization: Asia Pacific Network Information Centre (APNIC) RegDate: 2004-04-07 Updated: 2009-10-08 Comment: This IP address range is not registered in the ARIN database. Comment: This range was transferred to the APNIC Whois Database as Comment: part of the ERX (Early Registration Transfer) project. Comment: For details, refer to the APNIC Whois Database via Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl Comment: Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment: for the Asia Pacific region. APNIC does not operate networks Comment: using this IP address range and is not able to investigate Comment: spam or abuse reports relating to these addresses. For more Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming Ref: https://rdap.arin.net/registry/ip/157.19.0.0 ResourceLink: https://apps.db.ripe.net/db-web-ui/query ResourceLink: whois.apnic.net OrgName: Asia Pacific Network Information Centre OrgId: APNIC Address: PO Box 3646 City: South Brisbane StateProv: QLD PostalCode: 4101 Country: AU RegDate: Updated: 2012-01-24 Ref: https://rdap.arin.net/registry/entity/APNIC ReferralServer: whois://whois.apnic.net ResourceLink: http://wq.apnic.net/whois-search/static/search.html OrgTechHandle: AWC12-ARIN OrgTechName: APNIC Whois Contact OrgTechPhone: +61 7 3858 3188 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN OrgAbuseHandle: AWC12-ARIN OrgAbuseName: APNIC Whois Contact OrgAbusePhone: +61 7 3858 3188 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN inetnum: 157.20.182.0 - 157.20.183.255 netname: HOSTER descr: Hosterdaddy Private Limited admin-c: PC1066-AP tech-c: SD1173-AP country: IN mnt-by: MAINT-IN-IRINN mnt-irt: IRT-HOSTERDADDY-IN mnt-routes: MAINT-IN-HOSTERDADDY mnt-routes: MAINT-IN-IRINN status: ASSIGNED PORTABLE last-modified: 2025-08-11T22:56:54Z source: APNIC irt: IRT-HOSTERDADDY-IN address: 701 SRS Tower, Sector 31, Faridabad 121003 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: PC1066-AP tech-c: SD1173-AP auth: # Filtered mnt-by: MAINT-IN-HOSTERDADDY mnt-by: MAINT-IN-IRINN last-modified: 2026-02-10T04:56:48Z source: APNIC role: Support Department address: 701 SRS Tower, Sector 31, Faridabad 121003 country: IN phone: +91 9716077160 e-mail: [email protected] admin-c: PC1066-AP tech-c: PC1066-AP nic-hdl: SD1173-AP mnt-by: MAINT-IN-HOSTERDADDY mnt-by: MAINT-IN-IRINN last-modified: 2025-09-27T10:07:43Z source: APNIC person: PRINCE CHOUDHARY address: 701 SRS Tower, Sector 31, Faridabad 121003 country: IN phone: +91 9716077160 e-mail: [email protected] nic-hdl: PC1066-AP mnt-by: MAINT-IN-HOSTER mnt-by: MAINT-IN-IRINN last-modified: 2025-09-27T10:07:43Z source: APNIC route: 157.20.182.0/24 country: IN descr: Route Object origin: AS152485 mnt-by: MAINT-IN-HOSTERDADDY mnt-by: MAINT-IN-IRINN mnt-routes: MAINT-IN-IRINN last-modified: 2025-12-14T22:25:03Z source: APNIC
- references
- https://x.com/skocherhan/status/1965948162948083793, https://x.com/skocherhan/status/1966122599697760557, https://x.com/skocherhan/status/1966127489018651116, https://x.com/skocherhan/status/1966241752517611922, https://x.com/skocherhan/status/1966244736039268743, https://x.com/skocherhan/status/1966246154854703444, https://x.com/skocherhan/status/1966246261922869254, https://x.com/skocherhan/status/1966247982661300315, https://x.com/skocherhan/status/1966254614451466625, https://threatfox.abuse.ch/export/csv/recent/
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 26 days ago
Appeared in 10 threat reports