IOC Radar
IPMediumSignal 61/100

38.81.81.83

Location
United StatesUnited States
Blairsville, Georgia
ASN
AS31919
Blue Ridge Mountain Electric Membership Corporation - BRM EMC
First Seen
Jul 5, 2025
Last Seen
Mar 21, 2026
Jul 5
First Seen
351d ago
Mar 21
Last Seen
92d ago
9
Reports
source reports
61%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
61%
Signal Score
61 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

64 techniques

Network Information

CountryUSUnited States
RegionBlairsville, Georgia
ASNAS31919
OrganizationBlue Ridge Mountain Electric Membership Corporation - BRM EMC

Feed Intelligence Summary

9 reports61% confidence
9
Source reports
61%
Confidence score
Category tags
abuseactive scanningapacheapache attackerattackbotnetbrute forcebrute force attackbrute force attackscisco devicecisco device targetedcommand and controlcowrie activitycowrie honeypotcredential accesscredential stuffingdata exfiltrationdecoy systemdevice managementdionaea activitydionaea honeypotdistributed attacksenterprise networkingexploit attempthoneytrap honeypotindicatorlamplamp stacklamp stack targetinglinuxmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware download attemptsnetworknetwork infrastructurenetwork intrusion attemptsnetwork scanningnetwork service scanningnorth americapassword attacksprocess injectionreconnaissanceresearchedsftp attacksftp attacksssh attackssh monitoringt1021t1021.001t1021.002t1021.003t1021.004t1021.005t1021.006t1021.007t1041t1046t1055t1059t1059.001t1059.004t1068t1071t1071.001t1071.004t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1588t1588.002t1588.003t1588.004t1590t1590.001t1590.002t1590.003t1590.004t1591t1591.001t1591.002t1592t1592.001t1592.002t1592.003t1592.004t1594t1595t1595.001t1595.002t1595.003t1596t1596.001t1596.002t1596.003t1596.004t1596.005t1598t1598.001t1598.003t1598.004threat actorthreat detectionthreat intelligenceunited statesweb application attacks

Activity Timeline

1 total obs
Mar 21Mar 21

Threat Activity Heatmap

· Peak: 2026-03-21
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
61
SIGNAL
Signal Score
61%
Confidence
9
Reports
First seenJul 5, 2025
Last seenMar 21, 2026
GeolocationUS
CountryUnited States
LocationBlairsville, Georgia
ASNAS31919
OrgBlue Ridge Mountain Electric Membership Corporation - BRM EMC
Coords37.7510, -97.8220

VirusTotal

Not checked

WHOIS

description
2025-07-01T01:26:44.455Z Honeypot : Ciscoasa : Source: 38.81.81.83 : Message: {'timestamp': '2025-07-01T01:26:44.455705', 'src_ip': '38.81.81.83', 'payload_printable': '"POST / HTTP/1.1" 302 -'}
raw
PSINet, Inc. COGENT-A (NET-38-0-0-0-1) 38.0.0.0 - 38.255.255.255 Blue Ridge Mountain Electric Membership Corporation - BRM EMC BRMEM-CGNT-NET-1 (NET-38-81-80-0-1) 38.81.80.0 - 38.81.95.255
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 11 months ago · Last seen 3 months ago
Appeared in 9 threat reports