IOC Radar
IPMediumSignal 27/100

45.125.61.35

Location
IndiaIndia
Mumbai, Maharashtra
ASN
AS133275
Global Network
First Seen
Jul 6, 2024
Last Seen
Apr 7, 2026
Jul 6
First Seen
708d ago
Apr 7
Last Seen
68d ago
9
Reports
source reports
27%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
27%
Signal Score
27 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

33 techniques

Network Information

CountryINIndia
RegionMumbai, Maharashtra
ASNAS133275
OrganizationGlobal Network

Feed Intelligence Summary

9 reports27% confidence
9
Source reports
27%
Confidence score
Category tags
active scanactive scanningadbhoney attacksadbhoney honeypotantispamasiaattackbotnetbotnet activitybrute forcebrute force attackcommand and controlcommunication protocolcompromised credentialscowrie honeypotcowrie ssh attackscredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase securitydecoy systemdionaea honeypotdionaea malware analysisdionaea malware collectiondistributed attackselasticpot honeypotelasticsearch monitoringexploitation activityftp brute forceheralding attack patternidentity & access exploitationindiaindicatorinjection activityiot securitylateral movementlog4jmailoney email attacksmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork scanningnetwork securitypassword attacksphishingphishing attackphishing trapprocess injectionpython script activityreconnaissanceresearchedresource hijackingscannersentrypeer botnetsftp attacksocial engineeringspamssh attackssh monitoringt1021t1021.002t1040t1041t1046t1055t1059t1059.004t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1195.001t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1583.001t1595t1595.001t1595.002t1595.003tannertanner web attackstargeting databasetelecommunicationsthreat actorthreat intelligencetor nodevoipvoip attack

Activity Timeline

1 total obs
Apr 7Apr 7

Threat Activity Heatmap

· Peak: 2026-04-07
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
27
SIGNAL
Signal Score
27%
Confidence
9
Reports
First seenJul 6, 2024
Last seenApr 7, 2026
GeolocationIN
CountryIndia
LocationMumbai, Maharashtra
ASNAS133275
OrgGlobal Network
Coords20.0063, 77.0060

VirusTotal

Not checked

WHOIS

description
2025-03-12T01:40:15.826Z Honeypot : Heralding : Source: 45.125.61.35 : Username/Password: Administrator/77777777 Port: 1080 Message: 2025-03-12 01:40:15.826629,d06e1b49-e2f5-4950-a3eb-0dfc2122e679,3f4c1013-d2eb-4d80-a66c-adb820433bca,45.125.61.35,52877,99.18.26.19,1080,socks5,Administrator,77777777,
raw
inetnum: 45.125.60.0 - 45.125.63.255 netname: GTEL-IN descr: Gigantic Infotel Pvt Ltd admin-c: MN392-AP tech-c: MN392-AP country: IN mnt-by: MAINT-IN-IRINN mnt-lower: MAINT-IN-IRINN mnt-irt: IRT-GIGANTIC-IN mnt-routes: MAINT-IN-GIGANTIC mnt-routes: MAINT-IN-IRINN status: ALLOCATED PORTABLE geoloc: 19.113926 72.892807 last-modified: 2025-08-11T22:47:36Z source: APNIC irt: IRT-GIGANTIC-IN address: 507, 5th Floor Plot No C-1/3 Laxmi Tower, Nani Wala Bagh Complex Azadpur phone: +91 8860606963 fax-no: +91 1304091121 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: MN392-AP tech-c: MN392-AP auth: # Filtered remarks: send spam and abuse report to [email protected] mnt-by: MAINT-IN-GIGANTIC last-modified: 2025-09-05T00:00:58Z source: APNIC role: Manger Noc address: 507, 5th Floor Plot No C-1/3 Laxmi Tower, Nani Wala Bagh Complex Azadpur country: IN phone: +91 8860606963 fax-no: +91 1304091121 e-mail: [email protected] admin-c: AB573-AP tech-c: AB573-AP nic-hdl: MN392-AP remarks: send spam and abuse report to [email protected] abuse-mailbox: [email protected] mnt-by: MAINT-IN-GIGANTIC last-modified: 2014-08-14T09:55:18Z source: APNIC route: 45.125.61.0/24 descr: Global Network origin: AS133275 mnt-by: MAINT-IN-IRINN mnt-routes: MAINT-IN-GNWK last-modified: 2022-07-26T10:04:10Z source: APNIC route: 45.125.61.0/24 descr: Gigantic Infotel Pvt Ltd origin: AS133706 mnt-by: MAINT-IN-GIGANTIC last-modified: 2023-05-04T13:01:42Z source: APNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 9 threat reports