IPMediumSignal 31/100
157.230.237.60
Location
United StatesNorth Bergen, NJ
ASN
AS14061
DigitalOcean, LLC
First Seen
Oct 19, 2021
Last Seen
May 30, 2026
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
31%
Signal Score
31 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionNorth Bergen, NJ
ASNAS14061
OrganizationDigitalOcean, LLC
Feed Intelligence Summary
15 reports31% confidence
15
Source reports
31%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningattackauto-generated securitybad reputationbad web botbotnetbotnet activitybrute forcebrute force attackbrute-forcecommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredecoy systemdionaea honeypotdistributed attacksexploitation activityftp brute forcehoneytrap honeypotidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activitylamplamp exploitation attemptsmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemanualnetworknetwork scanningnetwork securitynorth americapassword attacksphishingphishing attackphishing trappotential malware distributionprocess injectionprotocol exploitationreconnaissanceresearchedresource hijackingscannersecurity policysentrypeer botnetsftp attacksip brute forcesip scanningsmtp brute forcesocial engineeringssh attackssh monitoringt1016t1018t1021t1040t1041t1046t1053t1055t1059t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1583t1587.001t1588t1590.001t1595t1595.001t1595.002t1595.003telecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunited statesusvoipvoip attackweb app attack
Activity Timeline
May 30May 30
Threat Activity Heatmap
· Peak: 2026-05-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
31
SIGNAL
Signal Score
31%
Confidence
15
Reports
First seenOct 19, 2021
Last seenMay 30, 2026
GeolocationUS
CountryUnited States
LocationNorth Bergen, NJ
ASNAS14061
OrgDigitalOcean, LLC
Coords40.7930, -74.0247
VirusTotal
Not checked
WHOIS
- description
- 2025-02-13T09:49:57.896Z Honeypot : Dionaea : Source: 157.230.237.60 : Port: 1433 Connection: {'transport': 'tcp', 'type': 'accept', 'protocol': 'mssqld'}
- raw
- NetRange: 157.230.0.0 - 157.230.255.255 CIDR: 157.230.0.0/16 NetName: DIGITALOCEAN-157-230-0-0 NetHandle: NET-157-230-0-0-1 Parent: NET157 (NET-157-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2018-08-22 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/157.230.0.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 years ago · Last seen 24 days ago
Appeared in 15 threat reports