IOC Radar
IPMediumSignal 75/100

43.224.171.91

Location
IndonesiaIndonesia
Denpasar, Bali
ASN
AS45701
Globalxtreme DPS
First Seen
May 29, 2025
Last Seen
Nov 14, 2025
May 29
First Seen
381d ago
Nov 14
Last Seen
212d ago
13
Reports
source reports
75%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
75%
Signal Score
75 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

35 techniques

Network Information

CountryIDIndonesia
RegionDenpasar, Bali
ASNAS45701
OrganizationGlobalxtreme DPS

Feed Intelligence Summary

13 reports75% confidence
13
Source reports
75%
Confidence score
Category tags
abuseaccess controlactive scanningasiaattackbotnetbrute forcebrute force attackbrute force attemptcommand and controlcommunication protocolcommunication technologiescowrie honeypotcredential accesscredential stuffingdata exfiltrationddosddos attacksdecoy systemdenial of servicedistributed attacksexploit attemptsftp brute forcehttp brute forceindicatorindonesiainternet of thingsintrusion detectioniociot botnetiot/ics attacklateral movementmalicious activitymalicious network activitymalicious softwaremalwaremalware propagationmalware scanningmirai botnetmobile carriersmobile networksnetworknetwork attacksnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscanscannersecurity policysftp attacksmtp brute forcesql injection attemptsssh attackssh monitoringt1021t1021.001t1021.002t1040t1041t1046t1055t1056.001t1059t1059.001t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.001t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003tcp protocoltelecom servicestelecommunicationstelnet threatthreat actorthreat intelligencethreat prevention

Activity Timeline

1 total obs
Nov 14Nov 14

Threat Activity Heatmap

· Peak: 2025-11-14
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
75
SIGNAL
Signal Score
75%
Confidence
13
Reports
First seenMay 29, 2025
Last seenNov 14, 2025
GeolocationID
CountryIndonesia
LocationDenpasar, Bali
ASNAS45701
OrgGlobalxtreme DPS
Coords-6.1728, 106.8272

VirusTotal

Not checked

WHOIS

raw
inetnum: 43.224.171.0 - 43.224.171.255 netname: GLOBALXTREME-DPS descr: GlobalXtreme country: ID admin-c: PIMA1-AP tech-c: PIMA1-AP abuse-c: AP1416-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-PIMAM-ID mnt-irt: IRT-PIMAM-ID last-modified: 2025-04-05T08:13:29Z geofeed: https://lg.globalxtreme-networks.net/geofeed.csv source: APNIC irt: IRT-PIMAM-ID address: Jl Raya Kerobokan 388x, North Kuta, Badung Bali 80361 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: PIMA1-AP tech-c: PIMA1-AP auth: # Filtered remarks: [email protected] was validated on 2025-01-03 mnt-by: MAINT-PIMAM-ID last-modified: 2025-01-03T06:55:53Z source: APNIC role: ABUSE PIMAMID country: ZZ address: Jl Raya Kerobokan 388x, North Kuta, Badung Bali 80361 phone: +000000000 e-mail: [email protected] admin-c: PIMA1-AP tech-c: PIMA1-AP nic-hdl: AP1416-AP remarks: Generated from irt object IRT-PIMAM-ID remarks: [email protected] was validated on 2025-01-03 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-01-03T06:56:10Z source: APNIC role: PT Internet Madju Abad Milenindo administrator address: Jl Raya Kerobokan 388x, North Kuta, Badung Bali 80361 country: ID phone: +62818367878 e-mail: [email protected] admin-c: PIMA1-AP tech-c: PIMA1-AP nic-hdl: PIMA1-AP mnt-by: MAINT-PIMAM-ID last-modified: 2024-05-29T00:31:30Z source: APNIC route: 43.224.171.0/24 descr: route object for 43.224.171.0/24 origin: AS45701 mnt-by: MAINT-PIMAM-ID country: ID last-modified: 2024-05-30T03:53:57Z source: APNIC inetnum: 43.224.171.0 - 43.224.171.255 netname: MILLENINDO-CU descr: CUSTOMER MILLENINDO descr: PT. Internet Madju Abad Millenindo descr: Internet Service Provider descr: Bali country: ID admin-c: AY59-AP tech-c: HG172-AP status: ASSIGNED NON-PORTABLE mnt-by: MAINT-ID-MILLENINDO mnt-irt: IRT-MILLENINDO-ID last-modified: 2020-09-22T02:39:59Z source: IDNIC irt: IRT-MILLENINDO-ID address: PT. Internet Madju Abad Millenindo address: Bali e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AY59-AP tech-c: HG172-AP auth: # Filtered mnt-by: MAINT-ID-MILLENINDO last-modified: 2021-01-15T11:23:37Z source: IDNIC person: Alik Yuswanto address: PT. Internet Madju Abad Millenindo address: Jl. Raya Kerobokan 388x address: Kuta, Bali (80361) country: ID phone: +62-361-736811 fax-no: +62-361-736833 e-mail: [email protected] nic-hdl: AY59-AP remarks: - mnt-by: MAINT-ID-MILLENINDO last-modified: 2021-01-20T01:25:40Z source: IDNIC person: Hostmaster GlobalXtreme nic-hdl: HG172-AP e-mail: [email protected] address: Jl. Retawu 8 address: address: Malang, East Java address: address: Indonesia phone: +62-341-56200 fax-no: +62-341-583933 country: ID mnt-by: MAINT-ID-MILLENINDO last-modified: 2008-09-04T07:29:58Z source: IDNIC route: 43.224.171.0/24 descr: route object for 43.224.171.0/24 origin: AS45701 mnt-by: MNT-APJII-ID country: ID last-modified: 2024-04-04T08:41:15Z source: IDNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 7 months ago
Appeared in 13 threat reports