IPMediumSignal 43/100

`219.100.37.246`

Location

Japan

Chiyoda City, Tokyo

ASN

AS36599

SoftEther Corporation

First Seen

Aug 26, 2020

Last Seen

Jun 14, 2026

Aug 26

First Seen

2130d ago

Jun 14

Last Seen

13d ago

Reports

source reports

43%

Confidence

medium

Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

43%

Signal Score

43 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

40 techniques

Network Information

Country

Japan

RegionChiyoda City, Tokyo

ASNAS36599

OrganizationSoftEther Corporation

IP Category

⟲

Proxy

Proxy server

⊕

VPN

VPN exit node

Feed Intelligence Summary

20 reports43% confidence

Source reports

43%

Confidence score

Category tags

active scanactive scanningadbhoney attacksadbhoney honeypotaerospace & defenseasiaattackauthentication attackauto-generated securityautomotive manufacturingbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute-forceciscocisco devicecivil servicescommand and controlcommunication protocolconpotconpot honeypotcowriecowrie honeypotcowrie ssh attackscredential accesscredential harvestingcredential stuffingcyber securitydarkforumsdata exfiltrationdata store exposuredatabase attacksdatabase exploitation attemptdatabase securityddosddos attackdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedevice managementdionaeadionaea honeypotdionaea malware collectiondistributed attackselasticpot honeypotelasticsearch monitoringelectronics manufacturingemailenterprise networkingexploitation activityexploited hostftp brute forceftp brute-forcegovernment technologyhackinghoneytrap honeypotics securityidentity & access exploitationindustrial automationindustrial control systemsindustrial iotindustrial productioninformation technologyinitial accessinjection activityiociot attacksiot device targetingiot securityiot/ics attackipphoney honeypotit infrastructurejapanjpkill-chain exploitationkill-chain reconnaissancelamplow-riskmailoney email attacksmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemanufacturing technologymilitary operationsnational securitynetworknetwork enumerationnetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork securitynextraynorth americaosintpassword attacksphishingphishing attackphishing trapprocess injectionprocess manufacturingproxypublic administrationpublic infrastructurepublic policyquality controlreconnaissanceredis honeypotredishoneypotregulatory agenciesremote accessremote servicesresearchedresource hijackingscannerscripting attackssecurity operationssentrypeer botnetsftpsftp attacksipsip brute forcesip scanningsocial engineeringsoftware developmentsshssh attackssh brute-forcessh monitoringsupply chain attacksupply chain managementt1021t1021.001t1021.002t1021.005t1040t1041t1046t1055t1059t1059.001t1059.004t1059.007t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1195.001t1203t1204.002t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1566.004t1583.001t1595t1595.001t1595.002t1595.003tannertanner web attackstargeting databasetelecommunicationsthreat actorthreat detectionthreat intelligencethreat-intelligencetor nodetpottsecunited statesvncvnc protocolvoipvoip attackvpnweb application attackweb application attacksweb attackweb exploitation

Activity Timeline

1 total obs

Jun 14Jun 14

Threat Activity Heatmap

· Peak: 2026-06-14

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Minimal

3mo

Minimal

Threat ScoreMedium Risk

SIGNAL

Signal Score

43%

Confidence

Reports

First seenAug 26, 2020

Last seenJun 14, 2026

GeolocationJP

CountryJapan

LocationChiyoda City, Tokyo

ASNAS36599

OrgSoftEther Corporation

Coords35.6897, 139.6895

ProxyVPN

VirusTotal

Not checked

WHOIS

description: Score: 70/100. Labels: abuseipdb:minimal, abuseipdb:reported, cowrie, firehol:unlisted, gti:exported, gti:suspicious. 219.100.37.246 classified as attacker with unclear intent (medium confidence). Origin: enriched. Listed on: AbuseIPDB (minimal, reported).
raw: inetnum: 219.96.0.0 - 219.127.255.255 netname: JPNIC-NET-JP descr: Japan Network Information Center country: JP admin-c: JNIC1-AP tech-c: JNIC1-AP abuse-c: AJ382-AP status: ALLOCATED PORTABLE mnt-by: APNIC-HM mnt-lower: MAINT-JPNIC mnt-irt: IRT-JPNIC-JP last-modified: 2020-07-23T04:25:28Z source: APNIC irt: IRT-JPNIC-JP address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda address: Chiyoda-ku, Tokyo 101-0047, japan e-mail: [email protected] abuse-mailbox: [email protected] phone: +81-3-5297-2311 fax-no: +81-3-5297-2312 admin-c: JNIC1-AP tech-c: JNIC1-AP auth: # Filtered remarks: [email protected] was validated on 2024-11-27 mnt-by: MAINT-JPNIC last-modified: 2025-09-04T01:00:00Z source: APNIC role: ABUSE JPNICJP country: ZZ address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda address: Chiyoda-ku, Tokyo 101-0047, japan phone: +81-3-5297-2311 fax-no: +81-3-5297-2312 e-mail: [email protected] admin-c: JNIC1-AP tech-c: JNIC1-AP nic-hdl: AJ382-AP remarks: Generated from irt object IRT-JPNIC-JP remarks: [email protected] was validated on 2024-11-27 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-01-23T00:15:35Z source: APNIC role: Japan Network Information Center address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda address: Chiyoda-ku, Tokyo 101-0047, Japan country: JP phone: +81-3-5297-2311 fax-no: +81-3-5297-2312 e-mail: [email protected] admin-c: JI13-AP tech-c: JE53-AP nic-hdl: JNIC1-AP mnt-by: MAINT-JPNIC last-modified: 2022-01-05T03:04:02Z source: APNIC inetnum: 219.100.36.0 - 219.100.39.255 netname: SoftEther-CIDR-BLK-JP descr: SoftEther Corporation remarks: Email address for spam or abuse complaints : [email protected] country: JP admin-c: DN4818JP tech-c: DN4818JP last-modified: 2016-12-26T21:41:38Z remarks: This information has been partially mirrored by APNIC from remarks: JPNIC. To obtain more specific information, please use the remarks: JPNIC WHOIS Gateway at remarks: http://www.nic.ad.jp/en/db/whois/en-gateway.html or remarks: whois.nic.ad.jp for WHOIS client. (The WHOIS client remarks: defaults to Japanese output, use the /e switch for English remarks: output) source: JPNIC
references: https://github.com/telekom-security/tpotce

`219.100.37.246`

MITRE ATT&CK TTPs

Network Information

IP Category

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey