IOC Radar
IPMediumSignal 100/100

180.144.91.212

Location
JapanJapan
Osaka, Osaka
ASN
AS17511
K-Opticom Corporation
First Seen
Jan 13, 2025
Last Seen
Feb 15, 2026
Jan 13
First Seen
527d ago
Feb 15
Last Seen
129d ago
10
Reports
source reports
99%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

32 techniques

Network Information

CountryJPJapan
RegionOsaka, Osaka
ASNAS17511
OrganizationK-Opticom Corporation

Feed Intelligence Summary

10 reports99% confidence
10
Source reports
99%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackbotnetbrute forcebrute force attemptcisco devicecommand and controlcommunication protocolcowriecowrie honeypotcowrie honeypot datacredential accesscredential harvestingcredential stuffingdata exfiltrationddos attacksdecoy systemdevice managementdistributed attacksenterprise networkinggithubindicatorinfrastructure acquisitionreconnaissanceinternet of thingsintrusion detectioniociot botnetiot/ics attackjapanjpmalicious activitymalicious network activitymalicious softwaremalwaremanualmirai botnetmysqlnetworknetwork attacksnetwork infrastructurenetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningnginxphishing attackprocess injectionprotocol exploitationpythonreconnaissanceresearchedscanscannersecurity policyserversftpsftp attacksftp exploit attemptslugsocial engineeringsshssh attackssh monitoringsurface webt1021t1021.002t1021.004t1040t1041t1046t1055t1056.001t1059.001t1071.001t1078t1110t1110.001t1110.002t1110.003t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp protocoltcp/23telecommunicationstelnet threatthreat actorthreat intelligencethreat preventionunauthorized access attempt

Activity Timeline

1 total obs
Feb 15Feb 15

Threat Activity Heatmap

· Peak: 2026-02-15
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
10
Reports
First seenJan 13, 2025
Last seenFeb 15, 2026
GeolocationJP
CountryJapan
LocationOsaka, Osaka
ASNAS17511
OrgK-Opticom Corporation
Coords34.6802, 135.5029

VirusTotal

Not checked

WHOIS

description
2025-02-19T12:32:28.902Z Honeypot : Cowrie : Source: 180.144.91.212 Data: New connection: 180.144.91.212:59829 (192.168.48.2:23) [session: ac4ca2cef252]
raw
inetnum: 180.144.0.0 - 180.147.255.255 netname: K-Opticom descr: OPTAGE Inc. descr: OPTAGE BLDG.,2-1-5 Shiromi,chuo-ku,Osaka 540-8622, Japan country: JP admin-c: JNIC1-AP tech-c: JNIC1-AP status: ALLOCATED PORTABLE remarks: Email address for spam or abuse complaints : [email protected] mnt-by: MAINT-JPNIC mnt-irt: IRT-JPNIC-JP mnt-lower: MAINT-JPNIC last-modified: 2020-10-26T06:30:04Z source: APNIC irt: IRT-JPNIC-JP address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda address: Chiyoda-ku, Tokyo 101-0047, japan e-mail: [email protected] abuse-mailbox: [email protected] phone: +81-3-5297-2311 fax-no: +81-3-5297-2312 admin-c: JNIC1-AP tech-c: JNIC1-AP auth: # Filtered remarks: [email protected] was validated on 2024-11-27 mnt-by: MAINT-JPNIC last-modified: 2025-04-10T11:04:13Z source: APNIC role: Japan Network Information Center address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda address: Chiyoda-ku, Tokyo 101-0047, Japan country: JP phone: +81-3-5297-2311 fax-no: +81-3-5297-2312 e-mail: [email protected] admin-c: JI13-AP tech-c: JE53-AP nic-hdl: JNIC1-AP mnt-by: MAINT-JPNIC last-modified: 2022-01-05T03:04:02Z source: APNIC inetnum: 180.144.0.0 - 180.144.127.255 netname: OPTAGE descr: OPTAGE Inc. country: JP admin-c: JP00014196 tech-c: JP00014196 last-modified: 2009-09-25T01:47:07Z remarks: This information has been partially mirrored by APNIC from remarks: JPNIC. To obtain more specific information, please use the remarks: JPNIC WHOIS Gateway at remarks: http://www.nic.ad.jp/en/db/whois/en-gateway.html or remarks: whois.nic.ad.jp for WHOIS client. (The WHOIS client remarks: defaults to Japanese output, use the /e switch for English remarks: output) source: JPNIC
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 10 threat reports