IOC Radar
IPMediumSignal 52/100

63.141.128.3

Location
United StatesUnited States
Austin, Texas
ASN
AS399566
Bigcommerce Inc
First Seen
Nov 22, 2023
Last Seen
Jun 1, 2026
Nov 22
First Seen
934d ago
Jun 1
Last Seen
12d ago
12
Reports
source reports
52%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
52%
Signal Score
52 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

41 techniques

Network Information

CountryUSUnited States
RegionAustin, Texas
ASNAS399566
OrganizationBigcommerce Inc

IP Category

Proxy
Proxy server

Feed Intelligence Summary

12 reports52% confidence
12
Source reports
52%
Confidence score
Category tags
acceptactive relatedactive scanactive scanningai_drivenavast avgbodybotnet activitybrute forcebrute force attackbrute force attackerck idck matrixck techniquesclickclick-based attackcloud infrastructurecode executioncommandcommand and controlcommand executioncommand_and_controlcompromise ipv4copycopy md5copy sha1copy sha256creation datecredential accesscredential stuffingdata accessdata copyingdata encryptiondata exfiltrationdata store exposuredata transferdata uploaddata_exfiltrationddosddos attacksdefense evasiondiv divdns attackdockencryptencryptionendpoint malware infectionentrieserrorevasionevasion attexecutable fileexploitation activityextortionfiles showforcudhackinghrefhtmlhttp attackhybrididentity & access exploitationiframeingress tool transferinjection activityinput validation bypassinternet of thingsiocsiot botnetiot securityiot/ics attackipv4 portlearnlinuxlocallookmalicious linksmalicious softwaremalwaremiraimirai botnetmitre attmovedmsiename tacticsnetworknextnext associatednorth americaogoogle trustoperating systempassive dnspassword attackspathpath traversalphishingpleaseportpresent sepprocess injectionprocess32nextwproxypulses urlransomransomwareread creconnaissancerefreshremote servicesremote_accessresearchedrestartscan endpointsscannerscript domainsscript urlssearchshellexecuteexwshowshow techniquesocial engineeringsoftware exploitationspanspawnsstringssystem disruptiont1005t1021t1021.001t1027t1030t1045t1053t1055t1057t1059t1060t1069.001t1071t1071.001t1078t1082t1105t1110.001t1110.002t1110.003t1110.004t1112t1119t1129t1143t1190t1203t1204t1204.001t1204.002t1480t1480 executiont1486t1490t1496t1499.002t1565t1566t1568t1595.001t1595.002t1595.003techthreat actortitle addedtlsv1toggletoolstor nodetrojantrojan malwaretrojandropperubuntu dateunitedunited statesunknown nsunknown siteunruyususer executionverifyweb application attackweb application exploitationweb securitywin32 malwarewindows malwarewindows ntwritezeus

Activity Timeline

1 total obs
Jun 1Jun 1

Threat Activity Heatmap

· Peak: 2026-06-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
52
SIGNAL
Signal Score
52%
Confidence
12
Reports
First seenNov 22, 2023
Last seenJun 1, 2026
GeolocationUS
CountryUnited States
LocationAustin, Texas
ASNAS399566
OrgBigcommerce Inc
Coords37.7510, -97.8220
Proxy

VirusTotal

Not checked

WHOIS

description
proxy-proxy_http search result.
raw
NetRange: 63.141.128.0 - 63.141.159.255 CIDR: 63.141.128.0/19 NetName: BIGCOMMERCE NetHandle: NET-63-141-128-0-1 Parent: NET63 (NET-63-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Bigcommerce Inc. (INTER-1370) RegDate: 2011-03-30 Updated: 2021-12-14 Comment: [email protected] Comment: http://www.bigcommerce.com/ Comment: Comment: Operational hours include: Comment: - 9am to 6pm CST Comment: - 9am to 5pm AEST Ref: https://rdap.arin.net/registry/ip/63.141.128.0 OrgName: Bigcommerce Inc. OrgId: INTER-1370 Address: 11305 Four Points Drive Address: Building II, Suite 300 City: Austin StateProv: TX PostalCode: 78726 Country: US RegDate: 2010-09-15 Updated: 2021-02-15 Comment: http://www.bigcommerce.com/ Ref: https://rdap.arin.net/registry/entity/INTER-1370 OrgTechHandle: TECHN1029-ARIN OrgTechName: Technical Operations OrgTechPhone: +15123811351 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/TECHN1029-ARIN OrgAbuseHandle: LEGAL6-ARIN OrgAbuseName: Legal Representative OrgAbusePhone: +1-888-699-8911 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/LEGAL6-ARIN
references
https://1275.ru/ioc/4120/gs-553-mirai-botnet-iocs/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 12 days ago
Appeared in 12 threat reports