IOC Radar
IPMediumSignal 26/100

59.91.224.217

Location
IndiaIndia
Morinda, PB
ASN
AS9829
BSNL Internet
First Seen
Jul 2, 2025
Last Seen
Apr 21, 2026
Jul 2
First Seen
356d ago
Apr 21
Last Seen
62d ago
5
Reports
source reports
26%
Confidence
medium
Found in 5 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
26%
Signal Score
26 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

41 techniques

Network Information

CountryINIndia
RegionMorinda, PB
ASNAS9829
OrganizationBSNL Internet

Feed Intelligence Summary

5 reports26% confidence
5
Source reports
26%
Confidence score
Category tags
abuseactive scanactive scanningasiaattackbad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcompromised credentials attemptcowrie honeypotcredential accesscredential stuffingdata exfiltrationdata exfiltration attemptdata store exposuredecoy systemdictionary attackdionaea honeypotdistributed attacksenumerationexploitationexploitation activityfailed login attemptsftp brute forcehoneytrap honeypotidentity & access exploitationindiaindicatorinjection activitylamplamp exploit attemptslamp exploitation attemptlateral movementmalicious activitymalicious payload attemptmalicious softwaremalwaremalware behaviourmalware capturenetworknetwork intrusion attemptsnetwork probingnetwork scanningnetwork service scanningpassword attackspassword sprayingpotential malware distributionpotential malware uploadprocess injectionransomwarereconnaissanceremote accessresearchedservice scansftp activitysftp attackshellssh attackssh monitoringt1016t1021t1021.001t1021.002t1021.004t1041t1046t1047t1055t1059t1059.004t1059.005t1059.007t1068t1071t1071.001t1071.004t1078t1078.001t1105t1110t1110.001t1110.002t1110.003t1110.004t1190t1199t1203t1204.002t1486t1496t1499.002t1499.003t1555t1565t1566t1566.001t1595t1595.001t1595.002t1595.003threat actorthreat detectionthreat intelligencetor nodeunauthorized access attempt

Activity Timeline

1 total obs
Apr 21Apr 21

Threat Activity Heatmap

· Peak: 2026-04-21
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
26
SIGNAL
Signal Score
26%
Confidence
5
Reports
First seenJul 2, 2025
Last seenApr 21, 2026
GeolocationIN
CountryIndia
LocationMorinda, PB
ASNAS9829
OrgBSNL Internet
Coords31.6243, 74.8769

VirusTotal

Not checked

WHOIS

description
dionaea, heralding, malicious, ssh, sftp, cowrie, LAMP, honeytrap
raw
inetnum: 59.91.200.0 - 59.91.255.255 netname: BB-Multiplay descr: O/o DGM BB, NOC BSNL Bangalore country: IN admin-c: BH155-AP tech-c: DB374-AP abuse-c: AB1061-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-IN-DOT mnt-irt: IRT-BSNL-IN last-modified: 2021-07-15T07:18:38Z source: APNIC irt: IRT-BSNL-IN address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP auth: # Filtered remarks: [email protected] was validated on 2024-12-26 mnt-by: MAINT-IN-DOT last-modified: 2024-12-26T04:34:51Z source: APNIC role: ABUSE BSNLIN country: ZZ address: Internet Cell address: Bharat Sanchar Nigam Limited. address: 8th Floor,148-B Statesman House address: Barakhamba Road, New Delhi - 110 001 phone: +000000000 e-mail: [email protected] admin-c: NC83-AP tech-c: CGMD1-AP nic-hdl: AB1061-AP remarks: Generated from irt object IRT-BSNL-IN remarks: [email protected] was validated on 2024-12-26 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2024-12-26T04:35:22Z source: APNIC person: BSNL Hostmaster nic-hdl: BH155-AP e-mail: [email protected] address: Broadband Networks address: Bharat Sanchar Nigam Limited address: 2nd Floor, Telephone Exchange, Sector 62 address: Noida phone: +91-120-2404243 fax-no: +91-120-2404241 country: IN mnt-by: MAINT-IN-PER-DOT last-modified: 2021-12-08T10:52:18Z source: APNIC person: DGM Broadband address: BSNL NOC Bangalore country: IN phone: +91-080-25805800 fax-no: +91-080-25800022 e-mail: [email protected] nic-hdl: DB374-AP mnt-by: MAINT-IN-PER-DOT last-modified: 2011-02-19T10:03:44Z source: APNIC route: 59.91.224.0/21 origin: AS9829 descr: Bharat Sanchar Nigam Ltd O/o Chief General Manager, Data Networks, BSNL CTS Compond, Netaji Nagar mnt-by: MAINT-IN-DOT last-modified: 2021-01-21T05:42:17Z source: APNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 11 months ago · Last seen 2 months ago
Appeared in 5 threat reports