147.50.248.101 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

IP Address

147.50.248.101

IPv4 Address

Location

🇹🇭 Thailand

Network

AS9891

CS LOXINFO Public Company Limited.

Threat Score

60/100

High Risk

attackBruteforcecowriecybersecurityioclastupdate

Attack Intelligence

MITRE ATT&CK Techniques

T1046 - Network Service Scanning, T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force, T1423 - Network Service Scanning, T1595.001 - Scanning IP Blocks, T1595.002 - Vulnerability Scanning, T1596.005 - Scan Databases, TA0043 - Reconnaissance

Geographic Location

Country

Thailand

City

Unknown

Region

Unknown

Coordinates

13.7442, 100.4608

Network Information

ASN

AS9891

Organization

CS LOXINFO Public Company Limited.

Network

AS9891 CS LOXINFO Public Company Limited.

WHOIS Information

NetRange

147.50.0.0 - 147.50.255.255

CIDR

147.50.0.0/16

NetName

APNIC

NetHandle

NET-147-50-0-0-1

Parent

NET147 (NET-147-0-0-0-0)

NetType

Early Registrations, Transferred to APNIC

OriginAS

Organization

Asia Pacific Network Information Centre (APNIC)

RegDate

Updated

2012-01-24

Ref

https://rdap.arin.net/registry/entity/APNIC

OrgName

Asia Pacific Network Information Centre

OrgId

APNIC

Address

PO Box 3646

City

South Brisbane

StateProv

QLD

PostalCode

4101

Country

OrgAbuseHandle

AWC12-ARIN

OrgAbuseName

APNIC Whois Contact

OrgAbusePhone

+61 7 3858 3188

OrgAbuseEmail

search-apnic-not-arin@apnic.net

OrgAbuseRef

https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle

AWC12-ARIN

Country: Thailand
Network: AS9891 cs loxinfo public company limited.
Noticed: 50 times
Protocols Attacked: SSH
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Italy, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Disclaimer

This page contains threat intelligence information for the IPv4 address 147.50.248.101 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.