IOC Radar
IPMediumSignal 100/100

73.139.104.17

Location
United StatesUnited States
Boynton Beach, FL
ASN
AS7922
Comcast IP Services, L.L.C.
First Seen
Feb 19, 2025
Last Seen
Jan 22, 2026
Feb 19
First Seen
479d ago
Jan 22
Last Seen
142d ago
13
Reports
source reports
99%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

28 techniques

Network Information

CountryUSUnited States
RegionBoynton Beach, FL
ASNAS7922
OrganizationComcast IP Services, L.L.C.

Feed Intelligence Summary

13 reports99% confidence
13
Source reports
99%
Confidence score
Category tags
abuseactive scanningattackbotnetbrute forcebrute force attackc2command and controlcompromised devicecompromised hostcompromised systemcowriecowrie honeypotcowrie honeypot datacredential accesscredential stuffingctadata exfiltrationddosddos attacksdecoy systemdistributed attacksgithubhackinghoneytrap honeypotindicatorinternet of thingsiot botnetiot/ics attacklamploginmalicious activitymalicious softwaremalwaremalware distributionmirai botnetmysqlnetworknetwork probingnetwork scanningnetwork securitynetwork service scanningnetwork trafficnginxnorth americapassword attacksprocess injectionprotocol exploitationpythonreconnaissanceresearchedscannerscanning activitysecurity operationsserversftpsftp attacksftp exploit attemptslugsocradar honeypotspamsshssh attackssh monitoringsurface webt1005t1016t1021t1021.004t1040t1041t1055t1059t1071t1071.001t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1565t1566t1595t1595.001t1595.002t1595.003telecommunicationstelnet threatthreat actorthreat detectionthreat intelligenceunauthorized access attemptunited statesus

Activity Timeline

1 total obs
Jan 22Jan 22

Threat Activity Heatmap

· Peak: 2026-01-22
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
13
Reports
First seenFeb 19, 2025
Last seenJan 22, 2026
GeolocationUS
CountryUnited States
LocationBoynton Beach, FL
ASNAS7922
OrgComcast IP Services, L.L.C.
Coords25.9562, -80.1828

VirusTotal

Not checked

WHOIS

description
2025-02-19T23:55:01.991Z Honeypot : Cowrie : Source: 73.139.104.17 Data: Connection lost after 13 seconds
raw
Comcast Cable Communications, LLC CABLE-1 (NET-73-0-0-0-1) 73.0.0.0 - 73.255.255.255 Comcast IP Services, L.L.C. POMPANO-6 (NET-73-138-0-0-1) 73.138.0.0 - 73.139.255.255
references
https://github.com/telekom-security/tpotce, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 4 months ago
Appeared in 13 threat reports