141.98.10.47 Threat Intelligence and Host Information

Share on:
Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 141.98.10.47 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: 32, 32-bit, 4545, 64, 64-bit, Alaska, Amadey, arm, ascii, ASPXShell, AsyncRAT, BadBazaar, BatchDropperMEMZ, CoinMiner, combinations, compromise ipv4, cyber security, discord, dll, domain port, dropped-by-PrivateLoader, elf, EpsilonStealer, exe, gs003, gs005, gs008, hajime, infostealer, intel, ioc, iocs, IPs Attacking Alaskan Hosts, ipv4 port, jar, jat, kfsensor, linux, LummaStealer, malicious, MarsStealer, mips, mirai, mirai botnet, motorola, Mozi, Nextray, N-W0rm, Password-protected, phishing, PowerPC, PowerShellDiscordKeyLogger, PowerShellDropboxScreenStealer, pwd-beta, rar, rdp, RedLineStealer, renesas, script, sha1, sha256, SocGholish, Socks5Systemz, sparc, ssh, Stealc, trojan, Web Attack, x86-32, x86-64

  • View other sources: Spamhaus VirusTotal

  • Country: Lithuania
  • Network: AS209605 uab host baltic
  • Noticed: 50 times
  • Protocols Attacked: sip
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: wizardly-chatterjee.141-98-10-47.plesk.page fastherbreward.com fastwelnesstrade.su genericdrugsale.com bestaideshop.com goodherbwebmart.com newtabletmall.com onlinefirstdeal.ru

Malware Detected on Host

Count: 30 8e4f07e054d95504ae446b6421e500e11dcf5564efd6d79987c800974c93e93d d0daa72404bc172b3156a330177ce4c98ab06e2c5cfc0c4c98b9ff15e63ceba6 d4d88bb7b289fc8fe85835f356c30440662efd3f2a033d4b99bda2f234647243 39e60430550edba1fbe6da455accea7d2394d8a0b921d4747fdd365442519b76 a47b0521a9f2d307b2f92670931e7e9dd5341aaf24a90670d228a9db89857bd8 0ab03990f76631ea9155550ab1ce403dbcebc068697d78958d1e6fbb587c2639 58dd20d9c3e38a8115434572a1975f207290cb2340b203ffaa6d3b08fa95da9f abfcd6342895929d5baf093e13140d0b37f8e97da0253480aa94ba5e78bcd1e1 4187143d61e8bcb4c6c00b001ca7aff558d8b0d77adbfb6fc0d00796c6568a4b 53c15a0758065226ff440e2d77fd9566797ad3e8ab328de743a0fc0e63c54799

Map

Whois Information

  • inetnum: 141.98.10.0 - 141.98.10.255
  • netname: LT-HOSTBALTIC-10
  • country: LT
  • admin-c: PV7242-RIPE
  • tech-c: PV7242-RIPE
  • status: ASSIGNED PA
  • mnt-by: mnt-lt-hostbaltic-1
  • created: 2019-01-10T13:11:38Z
  • last-modified: 2019-01-10T13:11:38Z
  • person: Paulius Vancugovas
  • address: Draugystes g. 19
  • address: 51230
  • address: Kaunas
  • address: LITHUANIA
  • phone: +37067358624
  • nic-hdl: PV7242-RIPE
  • mnt-by: mnt-lt-hostbaltic-1
  • created: 2019-01-08T13:14:38Z
  • last-modified: 2019-01-09T13:14:40Z
  • route: 141.98.10.0/24
  • origin: AS209605
  • mnt-by: mnt-lt-hostbaltic-1
  • created: 2019-01-23T11:43:09Z
  • last-modified: 2019-01-23T11:43:09Z

Links to attack logs

dofrank-sip-bruteforce-ip-list-2021-09-18 ** dotoronto-sip-bruteforce-ip-list-2021-09-18 awsbah-sip-bruteforce-ip-list-2021-09-18 ** dosing-sip-bruteforce-ip-list-2021-09-18 sip-bruteforce-ip-list-2021-09-18 **