IOC Radar
IPMediumSignal 31/100

66.228.60.27

Location
United StatesUnited States
Atlanta, Georgia
ASN
AS63949
Linode
First Seen
Feb 3, 2025
Last Seen
Apr 8, 2026
Feb 3
First Seen
492d ago
Apr 8
Last Seen
64d ago
10
Reports
source reports
31%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
31%
Signal Score
31 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

25 techniques

Network Information

CountryUSUnited States
RegionAtlanta, Georgia
ASNAS63949
OrganizationLinode

Feed Intelligence Summary

10 reports31% confidence
10
Source reports
31%
Confidence score
Category tags
abuseactive scanactive scanningattackbad reputationbotnetbotnet activitybrute forcecommand and controlcompromised credentialsconpotconpot honeypotcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredecoy systemdionaeadionaea honeypotdistributed attacksemailexploit kit activityexploitation activityftp brute forcegithubhoneytrap honeypotics securityidentity & access exploitationindicatorindustrial control systemsinjection activityiot securityiot/ics attacklamplateral movementmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork intrusionnetwork intrusion attemptsnetwork scanningnorth americaphishingphishing attackphishing trapprocess injectionpythonreconnaissanceresearchedscannersftpsftp attackslugsocial engineeringsshssh attackssh monitoringsurface webt1021t1041t1046t1053t1055t1059t1071.001t1078t1110t1110.002t1190t1486t1496t1499.002t1499.003t1555t1565t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannerthreat actorthreat detectionthreat intelligencetor nodeunauthorized access attemptunited statesunited states of americaus

Activity Timeline

1 total obs
Apr 8Apr 8

Threat Activity Heatmap

· Peak: 2026-04-08
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
31
SIGNAL
Signal Score
31%
Confidence
10
Reports
First seenFeb 3, 2025
Last seenApr 8, 2026
GeolocationUS
CountryUnited States
LocationAtlanta, Georgia
ASNAS63949
OrgLinode
Coords33.7485, -84.3871

VirusTotal

Not checked

WHOIS

description
2025-02-04T03:56:26.553Z Honeypot : ConPot : Source: 66.228.60.27 : Port: 161 Data Type: snmp Event Type: SNMPv2 GetNext
raw
Akamai Technologies, Inc. LINODE-US (NET-66-228-32-0-1) 66.228.32.0 - 66.228.63.255 Linode LINODE (NET-66-228-32-0-2) 66.228.32.0 - 66.228.63.255

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 2 months ago
Appeared in 10 threat reports