IPHighVerifiedSignal 56/100
69.152.135.82
Location
United StatesWoodland Hills, CA
ASN
AS7018
AT&T Enterprises, LLC
First Seen
Jul 5, 2025
Last Seen
Apr 8, 2026
Jul 5
First Seen
355d ago
Apr 8
Last Seen
77d ago
6
Reports
source reports
56%
Confidence
high
1/91
VirusTotal
detections
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
56%
Signal Score
56 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryUnited States
United StatesRegionWoodland Hills, CA
ASNAS7018
OrganizationAT&T Enterprises, LLC
Feed Intelligence Summary
6 reports56% confidence
6
Source reports
56%
Confidence score
Category tags
active scanactive scanningattackbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attackscisco asacisco devicecommand and controlcommunication protocolcowrie honeypotcredential accesscredential stuffingdata exfiltrationdata store exposureddosddos attackdecoy systemdevice managementdionaea honeypotdistributed attacksenterprise networkingexploitationexploitation activityftphackinghoneytrap honeypothttp scanneridentity & access exploitationindicatorinjection activitylamplamp stacklinuxmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware download attemptsnetworknetwork infrastructurenetwork intrusion attemptsnetwork probingnetwork scanningnorth americapassword attacksprocess injectionreconnaissanceresearchedscannersftp attacksftp attacksssh attackssh monitoringt1016.001t1021t1021.001t1041t1046t1055t1059t1059.004t1068t1071.001t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1204.002t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telekom-security/tpotcethreat actorthreat detectionthreat intelligencetor nodeunited statesweb application attacksweb traffic
Activity Timeline
Apr 8Apr 8
Threat Activity Heatmap
· Peak: 2026-04-08LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
56
SIGNAL
Signal Score
56%
Confidence
6
Reports
First seenJul 5, 2025
Last seenApr 8, 2026
Verified IOC
GeolocationUS
CountryUnited States
LocationWoodland Hills, CA
ASNAS7018
OrgAT&T Enterprises, LLC
Coords34.1554, -118.5957
WHOIS
- description
- 2025-07-01T02:32:29.430Z Honeypot : Ciscoasa : Source: 69.152.135.82 : Message: {'timestamp': '2025-07-01T02:32:29.430941', 'src_ip': '69.152.135.82', 'payload_printable': '"POST / HTTP/1.1" 302 -'}
- raw
- NetRange: 69.148.0.0 - 69.155.255.255 CIDR: 69.148.0.0/14, 69.152.0.0/14 NetName: SBCIS-SIS80 NetHandle: NET-69-148-0-0-1 Parent: NET69 (NET-69-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: AT&T Enterprises, LLC (AEL-360) RegDate: 2003-12-24 Updated: 2024-12-05 Ref: https://rdap.arin.net/registry/ip/69.148.0.0 OrgName: AT&T Enterprises, LLC OrgId: AEL-360 Address: 208 S. Akard St. City: Dallas StateProv: TX PostalCode: 75202 Country: US RegDate: 2024-11-22 Updated: 2025-07-21 Ref: https://rdap.arin.net/registry/entity/AEL-360 OrgAbuseHandle: ABUSE7-ARIN OrgAbuseName: abuse OrgAbusePhone: +1-919-319-8167 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE7-ARIN OrgTechHandle: ZS44-ARIN OrgTechName: IPAdmin-ATT Internet Services OrgTechPhone: +1-888-510-5545 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/ZS44-ARIN OrgTechHandle: ICC-ARIN OrgTechName: IP Team OrgTechPhone: +1-888-876-2382 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/ICC-ARIN OrgRoutingHandle: ROUTI59-ARIN OrgRoutingName: Routing POC OrgRoutingPhone: +1-999-999-9999 OrgRoutingEmail: [email protected] OrgRoutingRef: https://rdap.arin.net/registry/entity/ROUTI59-ARIN
- references
- https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 11 months ago · Last seen 2 months ago
Appeared in 6 threat reports