IOC Radar
IPHighVerifiedSignal 51/100

174.138.186.157

Location
United StatesUnited States
Secaucus, New Jersey
ASN
AS19318
Interserver, Inc
First Seen
May 21, 2025
Last Seen
Nov 11, 2025
May 21
First Seen
380d ago
Nov 11
Last Seen
206d ago
5
Reports
source reports
51%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
51%
Signal Score
51 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

49 techniques

Network Information

CountryUSUnited States
RegionSecaucus, New Jersey
ASNAS19318
OrganizationInterserver, Inc

Feed Intelligence Summary

5 reports51% confidence
5
Source reports
51%
Confidence score
Category tags
aerospace & defenseahnlabahnlab smartaptasiaattackattack methodauthlobbybotnetcabcab archive exploitationcab filecab file exploitationcommand and controlcompromised websitecredential accesscredential harvestingdata exfiltrationdefensedefense contractingdefense logisticsdefense systemsdefense technologydistributed attacksfinalformguideindicatorkimsukykoreakorea, republic oflnklnk filelnk file exploitationmalicious activitymalicious formmalicious softwaremalwaremalware deliverymalware distributionmilitary operationsnational securitynetworkoverview ahnlabphishing attackprocess injectionproof document exploitationproof documentsratrat malwareremote access trojanresearchedrokratservicesocial engineeringsouth koreaspear phishing attackspearphishing attackst1003t1005t1027t1027.001t1027.002t1027.003t1027.004t1036t1041t1047t1053t1055t1056t1059t1059.001t1059.003t1059.004t1059.005t1071t1071.001t1071.004t1078t1078.001t1078.002t1078.003t1082t1083t1105t1132t1132.001t1132.002t1190t1195t1195.001t1204t1204.002t1486t1496t1499.002t1499.003t1547t1565t1566t1566.001t1566.002t1566.003t1573t1573.001t1573.002threatthreat actorunited stateswatering holewatering hole attackxenorat

Activity Timeline

1 total obs
Nov 11Nov 11

Threat Activity Heatmap

· Peak: 2025-11-11
Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address, signals a significant and urgent threat requiring immediate attention. Its identification strongly points towards potential involvement in sophisticated, targeted cyber operations, likely by state-sponsored actors. The associated threat could lead to unauthorized access, data exfiltration, and the establishment of persistent footholds within an organization's network, posing severe risks to intellectual property and operational integrity. Igno…

Threat ScoreMedium Risk
51
SIGNAL
Signal Score
51%
Confidence
5
Reports
First seenMay 21, 2025
Last seenNov 11, 2025
Verified IOC
GeolocationUS
CountryUnited States
LocationSecaucus, New Jersey
ASNAS19318
OrgInterserver, Inc
Coords40.7862, -74.0743

VirusTotal

Not checked

WHOIS

description
CC=US ASN=AS19318 interserver inc

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 year ago · Last seen 6 months ago
Appeared in 5 threat reports