IOC Radar
IPMediumSignal 29/100

67.205.133.146

Location
United StatesUnited States
North Bergen, NJ
ASN
AS14061
Digital Ocean
First Seen
Mar 6, 2023
Last Seen
Jun 4, 2026
Mar 6
First Seen
1196d ago
Jun 4
Last Seen
10d ago
19
Reports
source reports
29%
Confidence
medium
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
29%
Signal Score
29 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

49 techniques

Network Information

CountryUSUnited States
RegionNorth Bergen, NJ
ASNAS14061
OrganizationDigital Ocean

Feed Intelligence Summary

19 reports29% confidence
19
Source reports
29%
Confidence score
Category tags
abuseactive scanactive scanningadbhoney alertsadbhoney honeypotattackaustraliaauthentication attemptsbad reputationbad web botbinaryedge-benignblog spambotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute force attemptbrute force attemptscisco devicecloud computingcloud infrastructurecloud migrationcloud securitycloud storagecode executioncommand and controlcommand executioncommand injection attemptcommunication protocolcompromised credentials attemptcowriecowrie honeypotcowrie ssh attackscredential accesscredential brute-forcingcredential harvestingcredential stuffingdata exfiltrationdata store exposuredatabase attacksddosddos attackdecoy systemdenial of servicedevice managementdionaeadionaea detectiondionaea honeypotdionaea malware collectiondionaea malware samplesdirectory traversal attemptdistributed attacksemailenterprise networkingexploit attemptexploit attemptsexploitation activityexploited hostfailed login attemptsfattfileftpftp brute forcehackinghoneytrap exploit attemptshoneytrap honeypothttp scanneridentity & access exploitationinformation gatheringinitial accessinjection activityintrusion detectionlamplamp exploitation attemptsmailoney honeypotmalicious activitymalicious file transfermalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemalware downloadmalware propagationmulti-cloud managementnetworknetwork infrastructurenetwork intrusion attemptsnetwork probingnetwork scanningnetwork securitynorth americaoceaniap0fp0f network fingerprintingp0f passive fingerprintingpassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationproxyreconnaissanceremote accessremote servicesresearchedresource hijackingsansscannerscanning activitysecurity operationssensor-taggedsentrypeer botnetservice scansftpsftp access attemptssftp attacksipsip scanningsmtpsmtp brute forcesocial engineeringsoftware exploitationspamsql injection attemptsshssh attackssh monitoringsuricata alertst1005t1018t1021t1021.001t1027t1040t1041t1046t1055t1059t1068t1071t1071.001t1076t1078t1087t1110t1110.001t1110.002t1110.003t1110.004t1133t1189t1190t1195t1203t1204.002t1486t1496t1497t1499.001t1499.002t1499.003t1505t1562t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1572t1583t1588t1595t1595.001t1595.002t1595.003tannertargeting databasetelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodetpotunauthorized accessunited statesusverified-benignvoipvoip attackweb application attackweb application attacksweb exploitationweb shell attemptweb shell detectionweb spamweb traffic

Activity Timeline

1 total obs
Jun 4Jun 4

Threat Activity Heatmap

· Peak: 2026-06-04
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
29
SIGNAL
Signal Score
29%
Confidence
19
Reports
First seenMar 6, 2023
Last seenJun 4, 2026
GeolocationUS
CountryUnited States
LocationNorth Bergen, NJ
ASNAS14061
OrgDigital Ocean
Coords40.7930, -74.0247

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=p0f, suricata; threshold?1; private IPs excluded.
raw
NetRange: 67.205.128.0 - 67.205.191.255 CIDR: 67.205.128.0/18 NetName: DIGITALOCEAN-67-205-128-0 NetHandle: NET-67-205-128-0-1 Parent: NET67 (NET-67-0-0-0-0) NetType: Direct Allocation OriginAS: AS14061 Organization: DigitalOcean, LLC (DO-13) RegDate: 2016-04-12 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/67.205.128.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 10 days ago
Appeared in 19 threat reports