IOC Radar
IPMediumSignal 34/100

157.66.55.50

Location
IndonesiaIndonesia
Bogor, West Java
ASN
AS141892
CV Mico Digital Indonesia
First Seen
Aug 21, 2024
Last Seen
Jun 2, 2026
Aug 21
First Seen
661d ago
Jun 2
Last Seen
11d ago
25
Reports
source reports
34%
Confidence
medium
Found in 25 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
34%
Signal Score
34 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

39 techniques

Network Information

CountryIDIndonesia
RegionBogor, West Java
ASNAS141892
OrganizationCV Mico Digital Indonesia

Feed Intelligence Summary

25 reports34% confidence
25
Source reports
34%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningadbhoney honeypotaerospace & defenseantispamaptasiaasyncratattackaustraliabad reputationbad web botbankingbotnetbotnet activitybotnet activity detectedbrazilbrute forcebrute force attackbrute force attemptsbrute-forcec2 communicationciscocisco devicecisco exploitation attemptscivil servicescommand & controlcommand and controlcommunication protocolcompromised systemconpotconpot honeypotcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingcredit card servicescryptocurrencycryptocurrency threatscryptojackingdata exfiltrationdata harvestingdata store exposuredatabase attackdatabase securitydcratddosddos attackdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedevice managementdionaeadionaea honeypotdistributed attackselasticpot honeypotelasticsearch monitoringemailenterprise networkingeuropeexploitexploit attemptexploitation activityexploited hostfattfinancefinancial servicesfinancial technologyftpftp brute forcegermanygovernment technologyhackinghoneytrap honeypothttp scannerics securityididentity & access exploitationimapimap attackindicatorindonesiaindustrial control systemsinformation stealerinfostealerinjection activityinjection attacksiot device targetingiot securityiot/ics attackipphoney honeypotlog4jlummamailoney honeypotmalicious activitymalicious domainmalicious linksmalicious payloadmalicious softwaremalwaremalware behaviourmalware capturemalware distributionmexicomilitary operationsmozimozi linknational securitynetworknetwork infrastructurenetwork intrusion attemptsnetwork probingnetwork reconnaissancenetwork scanningnetwork securitynorth americaoceaniap0fpassword attackspayment processingphishingphishing attackphishing trapprocess injectionprotocol exploitationpublic administrationpublic infrastructurepublic policyransomwareratreconnaissanceredis exploitation attemptsredis honeypotredishoneypotregulatory agenciesremote access trojanresearchedresource hijackingrtbhsalityscannerscanning activitysecurity operationssecurity policysensor-taggedsentrypeer botnetsftpsftp activitysftp attacksingaporesipsip brute forcesip scanningsmtpsmtp attackersocial engineeringsocradar honeypotsouth americaspamsshssh attackssh monitoringsteamsurface websystem accesst-pott1021t1040t1041t1046t1055t1059t1059.003t1068t1071t1071.001t1078t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1203t1204t1204.001t1486t1496t1499.001t1499.002t1499.003t1565t1566t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannertargeting databasetech mahindratelecommunicationstelnet threatthreat actorthreat actor activitythreat detectionthreat intelligencethreat preventionthreat reporttor nodetpotukraineunited statesunknown threat actorvanuatuvoipvoip attackwealth managementweb app attackweb application attackweb exploitweb exploitationweb scannerweb securityweb spamweb traffic

Activity Timeline

1 total obs
Jun 2Jun 2

Threat Activity Heatmap

· Peak: 2026-06-02
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
34
SIGNAL
Signal Score
34%
Confidence
25
Reports
First seenAug 21, 2024
Last seenJun 2, 2026
GeolocationID
CountryIndonesia
LocationBogor, West Java
ASNAS141892
OrgCV Mico Digital Indonesia
Coords-6.5782, 106.7710

VirusTotal

Not checked

WHOIS

description
2025-01-16T18:59:21.342Z Honeypot : ElasticPot : Source: 157.66.55.50 : Port: 9200 Event Type: Scan
raw
inetnum: 157.66.54.0 - 157.66.55.255 netname: IDNIC-DARODATA-ID descr: CV Mico Digital Indonesia descr: Corporate / Direct Member IDNIC descr: Jl. Dr Sumeru No 23E descr: Menteng, Bogor Barat descr: Bogor, Jawa Barat, 19111 admin-c: YS2517-AP tech-c: YS2517-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-DARODATA-ID mnt-routes: MAINT-ID-DARODATA status: ASSIGNED PORTABLE last-modified: 2024-04-02T03:51:05Z source: APNIC irt: IRT-DARODATA-ID address: CV Mico Digital Indonesia address: Jl. Dr Sumeru No 23E address: Menteng, Bogor Barat address: Bogor, Jawa Barat, 19111 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: YS2517-AP tech-c: YS2517-AP auth: # Filtered mnt-by: MAINT-ID-DARODATA last-modified: 2024-04-02T03:40:29Z source: APNIC person: Yusuf Setiawan address: Jln. Dr Sumeru No 23E address: Menteng, Bogor Barat address: Bogor, Jawa Barat, 19111 country: ID e-mail: [email protected] phone: +62-251-8350574 nic-hdl: YS2517-AP mnt-by: MAINT-ID-DARODATA last-modified: 2024-04-02T03:40:44Z source: APNIC inetnum: 157.66.54.0 - 157.66.55.255 netname: IDNIC-DARODATA-ID descr: CV Mico Digital Indonesia descr: Corporate / Direct Member IDNIC descr: Jl. Dr Sumeru No 23E descr: Menteng, Bogor Barat descr: Bogor, Jawa Barat, 19111 admin-c: YS2517-AP tech-c: YS2517-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-irt: IRT-DARODATA-ID mnt-routes: MAINT-ID-DARODATA status: ASSIGNED PORTABLE last-modified: 2024-04-05T08:14:29Z source: IDNIC irt: IRT-DARODATA-ID address: CV Mico Digital Indonesia address: Jl. Dr Sumeru No 23E address: Menteng, Bogor Barat address: Bogor, Jawa Barat, 19111 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: YS2517-AP tech-c: YS2517-AP auth: # Filtered mnt-by: MAINT-ID-DARODATA last-modified: 2024-04-05T08:14:29Z source: IDNIC person: Yusuf Setiawan address: Jln. Dr Sumeru No 23E address: Menteng, Bogor Barat address: Bogor, Jawa Barat, 19111 country: ID e-mail: [email protected] phone: +62-251-8350574 nic-hdl: YS2517-AP mnt-by: MAINT-ID-DARODATA last-modified: 2024-04-05T08:14:37Z source: IDNIC
references
https://list.rtbh.com.tr/output.txt, https://github.com/telekom-security/tpotce, https://urlhaus.abuse.ch/, https://any.run/malware-trends/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 11 days ago
Appeared in 25 threat reports