IPMediumSignal 77/100

`76.12.128.249`

Location

United States

Houston, Texas

ASN

AS20021

Job IT Corp.

First Seen

Nov 8, 2024

Last Seen

Jun 6, 2026

Nov 8

First Seen

579d ago

Jun 6

Last Seen

5d ago

Reports

source reports

77%

Confidence

medium

Found in 16 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

77%

Signal Score

77 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

4 techniques

Network Information

Country

United States

RegionHouston, Texas

ASNAS20021

OrganizationJob IT Corp.

Feed Intelligence Summary

16 reports77% confidence

Source reports

77%

Confidence score

Category tags

active scanactive scanningattackblocklist_allbrute forcebrute-forcebruteforceddosddos attackexploitexploitation activityexploited hostftpftp brute-forcehackingimapimap attackindicatorkill-chain exploitationkill-chain reconnaissancelow-risknetworknorth americaosintphishingreconnaissanceresearchedscannersmtpsmtp attackerspamsshssh attackt1110.001t1595.001t1595.002t1595.003tpotunited statesusvncvulnerability scanvulnerability-exploitationweb app attackweb spam

Activity Timeline

1 total obs

Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

Minimal

30d

Minimal

3mo

Minimal

Threat ScoreHigh Risk

SIGNAL

Signal Score

77%

Confidence

Reports

First seenNov 8, 2024

Last seenJun 6, 2026

GeolocationUS

CountryUnited States

LocationHouston, Texas

ASNAS20021

OrgJob IT Corp.

Coords29.7270, -95.5563

VirusTotal

Not checked

WHOIS

description: Score: 100/100. Labels: abuseipdb:brute-force, abuseipdb:critical, abuseipdb:ddos, abuseipdb:exploited-host, abuseipdb:ftp-brute, abuseipdb:hacking. 76.12.128.249 classified as automated brute-force attacker targeting SSH/Telnet credentials (medium confidence). Origin: enriched. Listed on: AbuseIPDB (brute-force, critical, ddos).
raw: Ntirety, Inc. HOSTMYSITE (NET-76-12-0-0-1) 76.12.0.0 - 76.12.255.255 Job IT Corp. JOBITCORP (NET-76-12-128-224-1) 76.12.128.224 - 76.12.128.255

`76.12.128.249`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy