IPHighVerifiedSignal 68/100
43.252.9.194
Location
IndonesiaJagirsidosermo, East Java
ASN
AS46023
QUANTUMNET
First Seen
Mar 12, 2026
Last Seen
May 30, 2026
Mar 12
First Seen
94d ago
May 30
Last Seen
15d ago
5
Reports
source reports
68%
Confidence
high
4/91
VirusTotal
detections
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryIndonesia
IndonesiaRegionJagirsidosermo, East Java
ASNAS46023
OrganizationQUANTUMNET
Feed Intelligence Summary
5 reports68% confidence
5
Source reports
68%
Confidence score
Category tags
abuseaccount compromiseactive scanactive scanningasiabad reputationbrute forcebrute force attackbrute-forcebruteforcecloud infrastructurecloud infrastructure attackcloud servicescredential accesscredential stuffingdecoy systemexploitation activityhackingididentity & access exploitationindicatorindonesiamssqlnetworkpassword attacksreconnaissanceresearchedresource hijackingscannert1078t1110.001t1110.002t1110.003t1110.004t1496t1595.001t1595.002t1595.003threat intelligence
Activity Timeline
May 30May 30
Threat Activity Heatmap
· Peak: 2026-05-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
5
Reports
First seenMar 12, 2026
Last seenMay 30, 2026
Verified IOC
GeolocationID
CountryIndonesia
LocationJagirsidosermo, East Java
ASNAS46023
OrgQUANTUMNET
Coords-7.3068, 112.7550
WHOIS
- description
- IPv4 hosts detected attempting to brute force MSSQL on Vultr Paris (France) honeypot
- raw
- inetnum: 43.252.8.0 - 43.252.11.255 netname: QUANTUMNET-ID descr: PT Quantum Tera Network descr: Internet Service Provider descr: Wisma IWI, Lt 6 descr: Jl Arjuna Selatan Kav 75 descr: Jakarta 11530 admin-c: TW558-AP tech-c: TW558-AP remarks: Send Spam & Abuse Reports to [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-QUANTUMNET mnt-irt: IRT-QUANTUMNET-ID mnt-routes: MAINT-ID-QUANTUMNET status: ALLOCATED PORTABLE last-modified: 2014-06-04T07:47:40Z source: APNIC irt: IRT-QUANTUMNET-ID address: PT Quantum Tera Network address: Wisma IWI, Lt 6 address: Jl Arjuna Selatan Kav 75 address: Jakarta 11530 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TW558-AP tech-c: TW558-AP auth: # Filtered mnt-by: MAINT-ID-QUANTUMNET last-modified: 2025-11-18T00:28:06Z source: APNIC person: Tjandra Widjaja nic-hdl: TW558-AP e-mail: [email protected] address: Wisma IWI, Lt 6 address: Jl Arjuna Selatan Kav 75 address: Jakarta 11530, Indonesia phone: +62-21-53678696 fax-no: +62-21-53678697 country: ID mnt-by: MAINT-ID-QUANTUMNET last-modified: 2010-01-07T04:48:42Z source: APNIC inetnum: 43.252.8.0 - 43.252.11.255 netname: QUANTUMNET-ID descr: PT Quantum Tera Network descr: Internet Service Provider descr: Wisma IWI, Lt 6 descr: Jl Arjuna Selatan Kav 75 descr: Jakarta 11530 admin-c: TW558-AP tech-c: TW558-AP remarks: Send Spam & Abuse Reports to [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-QUANTUMNET mnt-irt: IRT-QUANTUMNET-ID mnt-routes: MAINT-ID-QUANTUMNET status: ALLOCATED PORTABLE last-modified: 2014-06-04T07:47:40Z source: IDNIC irt: IRT-QUANTUMNET-ID address: PT Quantum Tera Network address: Wisma IWI, Lt 6 address: Jl Arjuna Selatan Kav 75 address: Jakarta 11530 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TW558-AP tech-c: TW558-AP auth: # Filtered mnt-by: MAINT-ID-QUANTUMNET last-modified: 2013-04-08T03:56:09Z source: IDNIC person: Tjandra Widjaja nic-hdl: TW558-AP e-mail: [email protected] address: Wisma IWI, Lt 6 address: Jl Arjuna Selatan Kav 75 address: Jakarta 11530, Indonesia phone: +62-21-53678696 fax-no: +62-21-53678697 country: ID mnt-by: MAINT-ID-QUANTUMNET last-modified: 2010-01-07T04:48:42Z source: IDNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 3 months ago · Last seen 15 days ago
Appeared in 5 threat reports