IOC Radar
IPLowSignal 69/100

68.183.139.165

Location
United StatesUnited States
North Bergen, NJ
ASN
AS14061
DigitalOcean, LLC
First Seen
Feb 15, 2025
Last Seen
Feb 22, 2026
Feb 15
First Seen
484d ago
Feb 22
Last Seen
112d ago
14
Reports
source reports
69%
Confidence
low
0/91
VirusTotal
detections
Found in 14 reports. Confidence: low. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

33 techniques

Network Information

CountryUSUnited States
RegionNorth Bergen, NJ
ASNAS14061
OrganizationDigitalOcean, LLC

Feed Intelligence Summary

14 reports69% confidence
14
Source reports
69%
Confidence score
Category tags
abuseaccessactive scanningadbhoney activityadbhoney honeypotattackbotnetbrute forcebrute force attackcommand and controlcommunication protocolconpot activityconpot honeypotconpot ics attackcowriecowrie activitycowrie honeypotcowrie ssh attackcredential accesscredential harvestingcredential stuffingdata exfiltrationdecoy systemdionaea activitydionaea honeypotdionaea malware detectiondistributed attacksemailftp brute forcegithubgroupshoneytrap honeypotics securityindicatorindustrial control systemsiot/ics attacklamplateral movementmailoney activitymailoney email spoofingmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturenetworknetwork enumerationnetwork intrusion attemptsnetwork scanningnetwork securitynorth americapassword attacksphishingphishing attackphishing trappotential malicious activityprocess injectionpythonreconnaissanceresearchedresource hijackingscannerscriptsentrypeer activitysentrypeer botnetsentrypeer p2p attackservice enumerationsftpsftp activitysftp attacksftp scanningsip brute forcesip scanningslugsmtpsmtp attackersmtp brute forcesocial engineeringsshssh attackssh monitoringsurface webt1021t1021.001t1021.002t1021.004t1040t1041t1055t1059t1059.004t1071.001t1078t1078.004t1110t1110.001t1110.002t1110.003t1110.004t1189t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1566.004t1595t1595.001t1595.002t1595.003tannertanner activitytanner web attacktelecommunicationsthreat actorthreat detectionthreat intelligenceunauthorized access attemptsunidentified attackerunited statesusvoipvoip attack

Activity Timeline

1 total obs
Feb 22Feb 22

Threat Activity Heatmap

· Peak: 2026-02-22
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
14
Reports
First seenFeb 15, 2025
Last seenFeb 22, 2026
GeolocationUS
CountryUnited States
LocationNorth Bergen, NJ
ASNAS14061
OrgDigitalOcean, LLC
Coords40.7930, -74.0247

VirusTotal

0/ 91vendors flagged
0% detection rateJun 10, 2026

WHOIS

description
Unknown source type: h0neytr4p
raw
NetRange: 68.183.0.0 - 68.183.255.255 CIDR: 68.183.0.0/16 NetName: DIGITALOCEAN-68-183-0-0 NetHandle: NET-68-183-0-0-1 Parent: NET68 (NET-68-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) RegDate: 2018-09-18 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/68.183.0.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 105 Edgeview Drive, Suite 425 City: Broomfield StateProv: CO PostalCode: 80021 Country: US RegDate: 2012-05-14 Updated: 2025-04-11 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgAbuseHandle: DIGIT19-ARIN OrgAbuseName: DigitalOcean Abuse OrgAbusePhone: +1-646-827-4366 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-646-827-4366 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-646-827-4366 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

low
First detected 1 year ago · Last seen 3 months ago
Appeared in 14 threat reports