IOC Radar
IPMediumSignal 56/100

59.183.106.118

Location
IndiaIndia
Hoshiārpur, Punjab
ASN
AS9829
Mahanagar Telephone Nigam Limited
First Seen
Dec 27, 2024
Last Seen
Sep 26, 2025
Dec 27
First Seen
535d ago
Sep 26
Last Seen
263d ago
6
Reports
source reports
56%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
56%
Signal Score
56 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

20 techniques

Network Information

CountryINIndia
RegionHoshiārpur, Punjab
ASNAS9829
OrganizationMahanagar Telephone Nigam Limited

Feed Intelligence Summary

6 reports56% confidence
6
Source reports
56%
Confidence score
Category tags
active scanningasiaattackbotnetbotnet activitybrute forcecommand and controlcowrie honeypotcredential accesscredential attackcredential stuffingdata exfiltrationdecoy systemdefault password attackdistributed attacksexploited hosthackingindiaindicatorlegacy protocol abusemalicious activitymalicious softwaremalwarenetworknetwork securitynorth americaprocess injectionprotocol exploitationreconnaissanceremote access attemptresearchedscannerscanning activitysftp attackssh attackssh monitoringt1021.001t1040t1041t1046t1055t1059.001t1071.001t1078t1110t1110.002t1190t1486t1496t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003tcp/23telnet threatthreat actorunited states

Activity Timeline

1 total obs
Sep 26Sep 26

Threat Activity Heatmap

· Peak: 2025-09-26
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
56
SIGNAL
Signal Score
56%
Confidence
6
Reports
First seenDec 27, 2024
Last seenSep 26, 2025
GeolocationIN
CountryIndia
LocationHoshiārpur, Punjab
ASNAS9829
OrgMahanagar Telephone Nigam Limited
Coords31.2147, 75.1960

VirusTotal

Not checked

WHOIS

description
Logged 1 visit on 1 honeypot. Duration: 33.17s, did not supply credentials
raw
inetnum: 59.176.0.0 - 59.185.255.255 netname: MTNL descr: Mahanagar Telephone Nigam Limited country: IN admin-c: AB782-AP tech-c: SM2089-AP status: ALLOCATED PORTABLE mnt-by: MAINT-IN-IRINN mnt-lower: MAINT-IN-MTNL mnt-routes: MAINT-IN-MTNL mnt-irt: IRT-MTNL-IN last-modified: 2016-12-14T04:38:46Z source: APNIC irt: IRT-MTNL-IN address: Jeevan Bharati Building address: Tower 1, 12th Floor, 124, Connaught Circus, New Delhi e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AB782-AP tech-c: SM2089-AP auth: # Filtered mnt-by: MAINT-IN-MTNL last-modified: 2022-07-01T08:44:20Z source: APNIC role: Senior Manager address: Mahanagar Doorsanchar Sadan, 5th Floor, 9 CGO Complex, Lodhi Road, New Delhi ,New Delhi,Delhi-110003 country: IN phone: +91 01124325185 e-mail: [email protected] admin-c: AB782-AP tech-c: AB782-AP nic-hdl: SM2089-AP mnt-by: MAINT-IN-MTNL last-modified: 2016-12-14T06:25:35Z source: APNIC person: Amarjeetkaur Bedi address: Mahanagar Doorsanchar Sadan, 5th Floor, 9 CGO Complex, Lodhi Road, New Delhi ,New Delhi,Delhi-110003 country: IN phone: +91 01124325185 e-mail: [email protected] nic-hdl: AB782-AP mnt-by: MAINT-IN-MTNL last-modified: 2016-12-14T06:28:12Z source: APNIC route: 59.183.96.0/20 descr: MTNL Mumbai Route descr: Mahanagar Telephone Nigam Limited, New Delhi country: IN origin: AS17813 mnt-by: MAINT-IN-MTNL last-modified: 2008-09-04T07:54:48Z source: APNIC route: 59.183.96.0/20 descr: MTNL Pool ROUTE OBJECT Through BSNL origin: AS9829 mnt-by: MAINT-IN-MTNL last-modified: 2023-04-25T07:45:31Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 8 months ago
Appeared in 6 threat reports