IOC Radar
IPMediumSignal 60/100

81.143.6.60

Location
AustraliaAustralia
Tower Hamlets, England
ASN
AS2856
BT Public Internet Service
First Seen
Jan 30, 2024
Last Seen
Jun 7, 2026
Jan 30
First Seen
866d ago
Jun 7
Last Seen
6d ago
24
Reports
source reports
60%
Confidence
medium
9/91
VirusTotal
detections
Found in 24 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
60%
Signal Score
60 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

54 techniques

Network Information

CountryAUAustralia
RegionTower Hamlets, England
ASNAS2856
OrganizationBT Public Internet Service

Feed Intelligence Summary

24 reports60% confidence
24
Source reports
60%
Confidence score
Category tags
abuseaccess controlaccount compromiseactive scanactive scanningapacheapache attackeraptasiaattackaustraliaauto-generated securitybad reputationbanner grabbing attemptblacklist candidatebotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute force attacksbrute force attemptsbrute-forcebruteforcec2certcloud infrastructurecloud infrastructure attackcloud servicescommand & controlcommand and controlcommand injectioncommunication protocolcompromised infrastructurecompromised systemcowrie honeypotcredential accesscredential harvestingcredential stuffingctadata encryptiondata exfiltrationdata store exposuredatabase attackddosddos attackddos attacksdecoy systemdenial of servicedionaea honeypotdionaea payloadsdistributed attacksdnsdns attackencryptioneuropeexploitexploitation activityexploited hostfattfatt detectionsfin scanftpftp brute forcegbhackinghoneytrap eventshoneytrap honeypothttp brute forcehttp scanneridentity & access exploitationindicatorinfected hostinfrastructure acquisitionreconnaissanceinitial accessinjection activityinternet facing assetinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackipv4kazakhstankaznetlateral movementmailoney eventsmailoney honeypotmalicious activitymalicious ipmalicious softwaremalicious trafficmalwaremalware behaviourmalware capturemanualmass scanning activitymiraimirai botnetmssql brute forcenetworknetwork attacksnetwork discoverynetwork intrusion attemptsnetwork probenetwork probingnetwork protocolnetwork reconnaissancenetwork scannetwork scanningnetwork securitynetwork traffic analysisnull scanoceaniaopen port detectionopenctip0fp0f signaturespassword attacksphishingphishing attackphishing trapping of deathportscanpossible botnet activitypossible reconnaissance activityprocess injectionprotocol exploitationransomwarereconnaissanceremote accessremote servicesresearchedresource hijackingscanscannerscannersscripting attackssecurity policysensor-taggedsentrypeer botnetsentrypeer eventsservice enumerationservice scanslugsmbsmb brute forcesmtpsmtp brute forcesocial engineeringsocradarspamsql injectionsshssh attackssh monitoringstealth scansurface websuricata alertssyn scant-pott1005t1016t1018t1021t1021.001t1021.002t1040t1046t1053t1055t1059t1059.004t1059.007t1068t1071t1071.001t1076t1077t1078t1083t1105t1110t1110.001t1110.002t1110.003t1110.004t1189t1190t1203t1210t1486t1496t1497t1499.001t1499.002t1499.003t1550.003t1562t1563t1565t1566t1566.001t1566.002t1566.003t1583t1583.001t1583.002t1587.001t1590t1590.001t1595t1595.001t1595.002t1595.003tannertanner eventstargeting databasetcptcp protocoltcp scantelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetpotudp port scanudp scanunauthorized access attemptunited kingdomunited kingdom of great britain and northern irelandvoipvoip attackvulnerability scanvultrweb application attackweb attackweb exploitationweb spamweb trafficxmas scan

Activity Timeline

1 total obs
Jun 7Jun 7

Threat Activity Heatmap

· Peak: 2026-06-07
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
60
SIGNAL
Signal Score
60%
Confidence
24
Reports
First seenJan 30, 2024
Last seenJun 7, 2026
GeolocationAU
CountryAustralia
LocationTower Hamlets, England
ASNAS2856
OrgBT Public Internet Service
Coords52.2393, -1.8038

VirusTotal

9/ 91vendors flagged
10% detection rateJun 8, 2026

WHOIS

description
IPv4 hosts detected port scanning Vultr Paris (France) honeypot
raw
Socket not responding: timed out
references
https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://threats.kz

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 6 days ago
Appeared in 24 threat reports