IOC Radar
IPLowSignal 41/100

206.189.45.230

Location
SingaporeSingapore
Singapore, Singapore
ASN
AS14061
DigitalOcean, LLC
First Seen
Jun 5, 2025
Last Seen
May 6, 2026
Jun 5
First Seen
385d ago
May 6
Last Seen
51d ago
17
Reports
source reports
41%
Confidence
low
0/91
VirusTotal
detections
Found in 17 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
41%
Signal Score
41 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

48 techniques

Network Information

CountrySGSingapore
RegionSingapore, Singapore
ASNAS14061
OrganizationDigitalOcean, LLC

Feed Intelligence Summary

17 reports41% confidence
17
Source reports
41%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningadbhoney honeypotasiaattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute force attemptsbrute-forcecloud computingcloud migrationcloud securitycloud storagecommand and controlcommunication protocolcommunication technologiesconpot activityconpot honeypotcowrie activitycowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase attackdatabase exploitation attemptdatabase securityddosddos attacksdecoy systemdionaea activitydionaea honeypotdistributed attacksexploit attemptexploitation activityftp brute forceheralding activityhoneytrap honeypotics securityidentity & access exploitationindustrial control systemsinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackipphoney activityipphoney honeypotlampmailoney activitymailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionmirai botnetmobile carriersmobile networksmulti-cloud managementnetworknetwork attacksnetwork probenetwork scanningnetwork securitynetwork service scanningpassword attacksphishingphishing attackphishing trappossible exploit attemptpotential reconnaissanceprocess injectionprotocol exploitationproxyreconnaissanceredis honeypotresearchedresource hijackingscanscannerscripting attackssecurity policysentrypeer botnetservice scansftp attacksgsingaporesip brute forcesip scanningsocial engineeringsshssh attackssh monitoringt1021t1021.001t1021.002t1021.003t1021.004t1021.006t1021.007t1040t1041t1046t1055t1059t1059.004t1059.007t1068t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1590t1590.001t1590.002t1590.003t1590.004t1590.005t1590.006t1595t1595.001t1595.002t1595.003tannertanner activitytargeting databasetcp protocoltelecom servicestelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunauthorized access attemptsvoipvoip attackvulnerability scanweb attackweb exploitation

Activity Timeline

1 total obs
May 6May 6

Threat Activity Heatmap

· Peak: 2026-05-06
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
41
SIGNAL
Signal Score
41%
Confidence
17
Reports
First seenJun 5, 2025
Last seenMay 6, 2026
GeolocationSG
CountrySingapore
LocationSingapore, Singapore
ASNAS14061
OrgDigitalOcean, LLC
Coords1.3078, 103.6818

VirusTotal

0/ 91vendors flagged
0% detection rateJun 8, 2026

WHOIS

description
2025-06-06T02:09:47.000Z Honeypot : Redishoneypot : Source: 206.189.45.230 : Port: 6379 Action: NewConnect Message:
raw
inetnum: 206.0.0.0 - 206.255.255.255 netname: ARIN-CIDR-BLOCK descr: Not allocated by APNIC remarks: ------------------------------------------------------ remarks: remarks: Important: remarks: remarks: Details of networks in this range are not registered remarks: in the APNIC Whois Database. remarks: remarks: Please search the ARIN Whois, which contains remarks: details of IP addresses allocated in North America, remarks: parts of the Caribbean, and sub-equatorial Africa: remarks: remarks: website: https://ws.arin.net/whois remarks: command line: whois.arin.net remarks: remarks: ------------------------------------------------------ country: AU admin-c: IANA1-AP tech-c: IANA1-AP mnt-by: MAINT-APNIC-AP mnt-lower: MAINT-APNIC-AP status: ALLOCATED PORTABLE last-modified: 2009-05-01T03:52:53Z source: APNIC role: Internet Assigned Numbers Authority address: see http://www.iana.org. admin-c: IANA1-AP tech-c: IANA1-AP nic-hdl: IANA1-AP remarks: For more information on IANA services remarks: go to IANA web site at http://www.iana.org. mnt-by: MAINT-APNIC-AP last-modified: 2018-06-22T22:34:30Z source: APNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 1 month ago
Appeared in 17 threat reports