IOC Radar
IPMediumSignal 71/100

74.62.242.170

Location
United StatesUnited States
Hemet, Colorado
ASN
AS20001
Amity Foundation
First Seen
Sep 25, 2024
Last Seen
Feb 28, 2026
Sep 25
First Seen
624d ago
Feb 28
Last Seen
103d ago
13
Reports
source reports
71%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

36 techniques

Network Information

CountryUSUnited States
RegionHemet, Colorado
ASNAS20001
OrganizationAmity Foundation

Feed Intelligence Summary

13 reports71% confidence
13
Source reports
71%
Confidence score
Category tags
abuseaccessaccess controlactive scanningadbhoney honeypotattackauto-generated securityblacklist candidatebotnetbotnet activitybrute forcecisco devicecommand and controlcommunication protocolconnectcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingdata encryptiondata exfiltrationddos attacksdecoy systemdevice managementdionaeadionaea honeypotdistributed attacksemailenterprise networkingftp brute forcegroupshoneytrap honeypotindicatorinternet of thingsintrusion detectioniot botnetiot/ics attacklamplamp exploitation attemptslateral movementmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemirai botnetnetworknetwork attacksnetwork infrastructurenetwork probingnetwork protocolnetwork scannetwork scanningnetwork securitynorth americaphishingphishing attackphishing trappotential malware distributionprocess injectionprotocol exploitationreconnaissanceresearchedresource hijackingscanscannerscriptsecurity policysentrypeer botnetsftpsftp attacksipsip brute forcesip scanningslugsmtp brute forcesocial engineeringsshssh attackssh monitoringsurface webt1016t1018t1021t1021.002t1040t1041t1046t1053t1055t1059t1068t1071.001t1077t1078t1105t1110t1110.002t1190t1210t1486t1496t1499.001t1499.002t1499.003t1550.003t1565t1566.001t1566.002t1566.003t1566.004t1583t1588t1595t1595.001t1595.002t1595.003tcptcp protocoltelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventionunited statesunited states of americausvoipvoip attack

Activity Timeline

1 total obs
Feb 28Feb 28

Threat Activity Heatmap

· Peak: 2026-02-28
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC), an IPv4 address `74.62.242.170`, represents a significant and active threat to organizational security. With a high score of 70.91 and no whitelist status, its presence in network traffic or logs should be treated with immediate concern. This IP address is strongly associated with hostile activities, including broad reconnaissance, network scanning, and attempts to exploit common vulnerabilities such as SMB/Windows Admin Shares. Such activities can serve as pr…

Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
13
Reports
First seenSep 25, 2024
Last seenFeb 28, 2026
GeolocationUS
CountryUnited States
LocationHemet, Colorado
ASNAS20001
OrgAmity Foundation
Coords39.6235, -104.8376

VirusTotal

Not checked

WHOIS

description
2025-02-06T08:19:17.750Z Honeypot : Dionaea : Source: 74.62.242.170 : Port: 1433 Connection: {'transport': 'tcp', 'type': 'accept', 'protocol': 'mssqld'}
raw
Charter Communications Inc RCWE (NET-74-62-0-0-1) 74.62.0.0 - 74.62.255.255 LULUNICO LULUNICO (NET-74-62-242-168-1) 74.62.242.168 - 74.62.242.175
references
https://github.com/telekom-security/tpotce, http://cinsscore.com/list/ci-badguys.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 3 months ago
Appeared in 13 threat reports