IOC Radar
IPMediumSignal 58/100

45.114.142.178

Location
IndiaIndia
Hyderabad, Telangana
ASN
AS18229
PSR Holdings Private Limited
First Seen
Aug 31, 2020
Last Seen
Mar 28, 2026
Aug 31
First Seen
2109d ago
Mar 28
Last Seen
73d ago
24
Reports
source reports
58%
Confidence
medium
Found in 24 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
58%
Signal Score
58 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

46 techniques

Network Information

CountryINIndia
RegionHyderabad, Telangana
ASNAS18229
OrganizationPSR Holdings Private Limited

IP Category

Proxy
Proxy server

Feed Intelligence Summary

24 reports58% confidence
24
Source reports
58%
Confidence score
Category tags
abuseaccess controlaccount discoveryaccount profilingaccount takeoveractive scanactive scanningasiaattackaustraliaauthenticationauthentication abuseauthentication attackauthentication attemptsauto-generated securitybad reputationblacklisted ip addressbotnetbotnet activitybrute forcebrute force attackbrute force attemptbrute-forcc2 servercisco devicecommand & controlcommand and controlcommunication protocolcompromised hostscowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredata theftddosddos attackdecoy systemdevice managementdistributed attacksenterprise networkingeuropeexploitation activityexternal remote servicesftp brute forcegeoiphoneytrap honeypothttp brute forceidentity & access exploitationinindiainfoinformation technologyinfrastructure acquisitionreconnaissanceinjection activityintrusion detectioniocit infrastructurelamplateral movementlogin attacklogin attemptslogin brute forcemailoney honeypotmalicious activitymalicious payloadmalicious softwaremalicious ssh loginmalwaremalware distributionmanualnetworknetwork accessnetwork attacksnetwork infrastructurenetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningnetwork traffic analysisnoticeoceaniaopen proxypassword attackpassword attacksphishingphishing attackphishing trapprocess injectionproxyransomwarereconnaissanceremote accessremote service exploitationremote servicesresearchedscanscannerscanning activitysecurity eventsecurity operationssecurity policyservice scansftp access attemptssftp attacksocial engineeringsocradar honeypotsoftware developmentspamssh attackssh monitoringt1021t1021.001t1021.002t1021.004t1021.006t1040t1041t1046t1055t1059t1059.004t1071t1071.001t1078t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1567t1573t1587.001t1588t1588.002t1589t1589.002t1590.001t1595t1595.001t1595.002t1595.003tcp protocoltelecommunicationsthreat actorthreat detectionthreat intelligencethreat preventiontor nodeunauthorized accessunauthorized access attemptsunited kingdomvalid accountsvulnerability scan

Activity Timeline

1 total obs
Mar 28Mar 28

Threat Activity Heatmap

· Peak: 2026-03-28
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
58
SIGNAL
Signal Score
58%
Confidence
24
Reports
First seenAug 31, 2020
Last seenMar 28, 2026
GeolocationIN
CountryIndia
LocationHyderabad, Telangana
ASNAS18229
OrgPSR Holdings Private Limited
Coords20.0063, 77.0060
Proxy

VirusTotal

Not checked

WHOIS

description
Host bruteforcing SSH
raw
inetnum: 45.114.140.0 - 45.114.143.255 netname: PSR_IN descr: PSR Holdings Private Limited admin-c: RR687-AP tech-c: MN375-AP country: IN mnt-by: MAINT-IN-IRINN mnt-irt: IRT-PSRIN-IN mnt-routes: MAINT-IN-PSRIN status: ASSIGNED PORTABLE last-modified: 2015-04-05T16:30:25Z source: APNIC irt: IRT-PSRIN-IN address: H.No 8-2-269, Road No 2, Banjara Hills, Hyderabad. phone: +91 04042030648 fax-no: +91 04023116055 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: RR687-AP tech-c: MN375-AP auth: # Filtered remarks: send spam and abuse report to [email protected] irt-nfy: [email protected] notify: [email protected] mnt-by: MAINT-IN-PSRIN last-modified: 2014-05-19T10:28:59Z source: APNIC role: Manager NOC address: H.No 8-2-269, Road No 2, Banjara Hills, Hyderabad. country: IN phone: +91 04042030648 e-mail: [email protected] admin-c: RR687-AP tech-c: RR687-AP nic-hdl: MN375-AP remarks: send spam and abuse report to [email protected] notify: [email protected] abuse-mailbox: [email protected] mnt-by: MAINT-IN-PSRIN last-modified: 2014-05-19T10:28:23Z source: APNIC person: Rajasimha Reddy address: H.No 8-2-269, Road No 2, Banjara Hills, Hyderabad. country: IN phone: +91 04042030648 fax-no: +91 04023116055 e-mail: [email protected] nic-hdl: RR687-AP remarks: send spam and abuse report to [email protected] notify: [email protected] abuse-mailbox: [email protected] mnt-by: MAINT-IN-PSRIN last-modified: 2014-05-19T10:27:40Z source: APNIC route: 45.114.142.0/24 descr: PSRHoldings Route Object origin: AS18229 mnt-by: MAINT-IN-IPAPELABS last-modified: 2015-04-08T10:39:52Z source: APNIC
references
https://github.com/telekom-security/tpotce, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 5 years ago · Last seen 2 months ago
Appeared in 24 threat reports