IOC Radar
IPMediumSignal 78/100

36.64.196.69

Location
IndonesiaIndonesia
Jakarta, Jakarta
ASN
AS7713
PT. Telekomunikasi Indonesia
First Seen
Dec 19, 2023
Last Seen
May 30, 2026
Dec 19
First Seen
905d ago
May 30
Last Seen
11d ago
8
Reports
source reports
78%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
78%
Signal Score
78 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

37 techniques

Network Information

CountryIDIndonesia
RegionJakarta, Jakarta
ASNAS7713
OrganizationPT. Telekomunikasi Indonesia

IP Category

Proxy
Proxy server

Feed Intelligence Summary

8 reports78% confidence
8
Source reports
78%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiaattackbad reputationblacklist candidateblacklist checkbotnetbotnet activitybrute forcebrute force attackbrute-forcebruteforcecommand and controlcommand executioncommunication protocolcredential accesscredential stuffingctadata encryptiondata exfiltrationdata store exposuredatabase securityddosddos attacksdecoy systemdhcpdistributed attackselasticsearchencryptionexploitation activityexploited hostftphackingididentity & access exploitationimapindicatorindonesiainformation gatheringinjection activityinternet of thingsintrusion detectioniot botnetiot securityiot/ics attacklateral movementldapmalicious activitymalicious softwaremalwaremirai botnetmssqlnetworknetwork attacksnetwork monitoringnetwork probenetwork probingnetwork protocolnetwork scannetwork scanningnetwork securityntporacleoracle databasepassword attacksprocess injectionprotocol exploitationproxyreconnaissanceremote accessremote servicesresearchedscanscannersecurity operationssecurity policyserver exploitationsocks5socks5 proxysql injectionssh attackt1016t1021t1021.001t1021.002t1040t1046t1055t1059t1059.003t1059.004t1059.005t1068t1071.001t1077t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1190t1210t1486t1496t1499.001t1499.002t1499.003t1505.004t1550.003t1562t1565t1566t1595t1595.001t1595.002t1595.003targeting databasetcp protocoltelnet threatthreat actorthreat intelligencethreat preventiontor nodevnc protocol

Activity Timeline

1 total obs
May 30May 30

Threat Activity Heatmap

· Peak: 2026-05-30
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
78
SIGNAL
Signal Score
78%
Confidence
8
Reports
First seenDec 19, 2023
Last seenMay 30, 2026
GeolocationID
CountryIndonesia
LocationJakarta, Jakarta
ASNAS7713
OrgPT. Telekomunikasi Indonesia
Coords-6.1810, 106.8260
Proxy

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 445 SMB. Same IP should not appear more than once in 96 hours in our lists S3#.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 11 days ago
Appeared in 8 threat reports