169.1.24.244 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 169.1.24.244 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 55/100

Host and Network Information

• Mitre ATT&CK IDs: T1001 - Data Obfuscation, T1003 - OS Credential Dumping, T1017 - Application Deployment Software, T1059 - Command and Scripting Interpreter, T1070.003 - Clear Command History, T1071.001 - Web Protocols, T1071.004 - DNS, T1071 - Application Layer Protocol, T1074.002 - Remote Data Staging, T1105 - Ingress Tool Transfer, T1147 - Hidden Users, TA0011 - Command and Control

• Tags: Command and cintrol, communicating, contacted, emotet, execution, historical ssl, MalwareBazzar, phishing, referrer, scanning host, smishing, social engineering, spear fishing, ssl certificate, telecommunications, threat roundup, trickbot, trojan, whois

• View other sources: Spamhaus VirusTotal

• Country: South Africa
• Network: AS37611 african network information center
• Noticed: 4 times
• Protocols Attacked: SSH
• Passive DNS Results: truefuel.africa adaptivenaturaldevelopment.com www.luxurysouthafricalodges.com stoxair.com solarstoragesummit.com sfl-entertainment.com mortallychallenged.com mortally-challenged.com n3v1.com coreprojectssa.co.za arattorney.co.za www.singitasafarilodges.com gdas.co.za www.marlothparklodges.co.za transactionbouquet.africa tanakaosward.africa www.tildedotcms.com transactionbouquet.com gregbath.com justpash.com flyjetavia.com dermatologistjohannesburg.com jnmsolutions.co.za www.withfusion.com miciti.dev lehase.africa app.troli.co.za westechkzn.com westechjhb.com westechct.com cloudskraal.com ccultivate.com cdnonlinestore.com salesforecastcopilot.com sekyooredeinsights.com mycopilotformarketing.com mydemandplancopilot.com mycopilotforsales.com mycopilotforrgm.com myretailcopilot.com mycopilotforplanning.com mycustomercopilot.com m0ksh.com lead4lifegroup.com bandittraining.com rigidtraining.com ribweesolutions.com www.aviatorsparadise.co.za leadoffscum.co.za smakenergy.co.za themommyclub.store discoveringyou.site luckypacket.shop betcoza.online nomad.capetown samcorpinvest.com honeyguideeswatini.com pasheto.com ndzilotshwa.com logiclime.tech comparelifecover.tech rentalhub.store kidoco.store kidoco.online akim.africa vitalcare.africa benamara.africa whitelotusthailandvacation.com aandaengineeringpro.com afshsummit.com cas-tools.com hausofcacti.com www.evincemedia.co.za www.bridgewaychurch.co.za mycsi.org seapanda.org cybetec.online cherubim-invest.com logisticsvm.com logistixvm.com iqxfortify.com iqxinternational.com capucci.store fournomads.org dcagency.online afrihostsp.com apitravelsolutions.com technoquesto.com dcagncy.com visionanalyticsgroup.com marbeldart.com lialejet.com indiancybercommand.com bigtreeafrica.com ultimateeventssa.com threehundred.net loada.net couplesaccommodation.com siphosethum.com marlothipark.com mernaosborne.com luxuryfamilysafaris.com luxurysafariaccommodation.com pureligence.com privatefamilysafaris.com galaxyfootballacademy.com ups88chq.com utanochroniccare.com umbusolegal.com firstlifedigital.com finnhopkins.com jogntea.store sebonifoundation.org greengoldsupplements.online wolfrobots.net khalangapharmacy.joburg greengoldsupplements.joburg kegu.africa novaenergy.africa safarikrugerpark.com honeymoonerssafari.com matolaenergy.com marlothparkbookings.com lekkerkyk.com greengoldsupplements.com umbusogroup.com krugersafariaccommodation.com khalangapharmacy.com krugerparksafariaccommodation.com keovation.com kalahariprint.com romanticsafaris.com fabuless.store brandwithus.shop bssginc.org wordmagician.online tshwane.online reallifewiththobekas.net synenergy.group myvisaassistant.africa hdembroidery.africa wesmart.africa therugbyclub1823.com sefalogica.com sferalogica.com showmygrow.com htagz.com ladyperman.com queenjaguar.com globaltreasurezone.com esp-radio.com thewigproject.com mpc-s.com iqlum.com lejlacorp.com portraitsbyxavier.com onlinesharetraders.com flow-aifinance.com mpcs.site ducksinarow.africa abaatcurtaing.com capernaumcity.com sanbytez.africa anastasihairandbeauty.com lusakafabrics.com ie-gs.com bbbmlegacy.com smagsoul.store seashope.org marvmakesmusic.online 786ranchers.com solidifytomorrow.org licence2chill.online wpm.biz saddha.africa allpides.com dgxserver.com dgxsystems.com dgxplatform.com sublimatedpolyestersouthafrica.com sawvbs.com sadiehenwood.com polyestersouthafrica.com gosafecam.com nordensultimate.com novelnutt.com krispees.com rugbyscrummachines.com rare-interiors.com randskunkworks.com foodforlifesa.org rwacoins.net oneofone.africa thecapitalbusiness.com cars4saleinternational.com ctcinter.com carsalesinternational.com shoptopprice.com shoptopprices.com mediateworld.com magomolafoundation.com magomola.com zunshinecoaching.com boats4saleinternational.com gabymagomola.com robbenislandtowallstreet.com fleetcamagile.com ierephaan.shop cybervanguard.org contra.capetown chelseabelle.africa whenteamsflow.com tortoiseformation.com tlrvisuals.com acciqprop.com criticalmetalsnews.com criticalmineralsnews.com howteamsflow.com shopifycopilot.com myrgmcopilot.com myibpcopilot.com mydrivingcopilot.com mymeetingcopilot.com myowncopilot.com myamazoncopilot.com mydevcopilot.com mytrainingcopilot.com mypromocopilot.com mypricingcopilot.com myanalyticscopilot.com myworkcopilot.com mybudgetcopilot.com iqprop.com phoenixigaming.com breachthegap.com batterymetalsnews.com bandwalk.com jeepliferental.com rwa-africa.com rgmcopilot.com sandtonplumbing.co.za fbktesting.site uphahlahousing.org excursion.africa koloi.africa santeriapc.co.za lokiworldwide.com bestiesbusiness.com onemorefitnesssystems.com excalbr.com neuronnote.com kairosprinthub.com freedomcollective.life mam.holdings sunningdale.capetown mamgroup.africa savannabonsai.com pietapolie.com aldott.co.za geico.co.za ongbest.org digitalworldafrica.com memorialith.com logpik.com branddgtl.com nalisis.com tltechinnovations.tech premiseservices.org gro.community akaniwealth.africa handeafrica.africa akaniwealth.com thodiso.com diepresident.com bulkpropertygroup.com gravecleaners.com fuliflexchq.com compliancesuite.global truckersclub.africa paarlboyshighalumnitrust.com fredandluca.com foxitsm.org oathafrica.org hillbrowspar.online houseflorence.capetown hillbrowspar.africa thisisoverwatch.com cultureofbraveacademy.com gascorpsa.com awebsite.co.za sweatx.org cohen.africa sweatx.africa adventuresinindiegaming.com thebrownrock.com thebabyspaacademy.com schrodertool.com satstogo.com moonmoogames.com okicubes.com erhardconradie.site ashergroup.org integrityenergysolutions.org converge-distribution.com minewaterbalances.com lesibamabitselastudio.com bigmotorsgroup.com faithandbenzos.com enlitafrica.com ihelp.africa enpas.africa skillgaplore.com loftsatdiaz.com learnezeezulu.online luxavia.group shed.capetown shippiibiz.africa shippiibookings.africa craftersmeat.com logifrex.com zuriapartments.com justiceprodigies.com solomzifoundation.org ladyvee.org emkhumbin.org ntsikelelo.org eardleaf.capetown timeintechnologies.com seveniagroup.com meerkatandco.com quickjo.com getthebuybox.com orgcharthosting.com neuroeaze.com stephanospetros.com somaticsoultherapy.com sa20tickets.com moselesele.com pleasedevme.com payasyoudev.com goatunes.com onewayinnovations.com eneleda.com neouvre.com rooibush.com mtt633.org hvdivorce.online plus27.online curiouswork.club azanyahgroup.com deedsarchitects.com cybonisodesigns.com demezmedia.com charteredaccountantawards.com mafuta-origins.com zwithuzwaapp.com betswithcharlie.com refineict.com foodworths.store lawyer.joburg zain.africa xander.africa advocate.africa interafricatrademerchants.africa tacticomms.africa deeztec.com strategymyooz.com salzburghunting.com mtt633.com bigdatafarmer.com nomoskin.com nododeo.com leadershipacademy.tech nationfire.online michaeljohnrobinson.capetown resilientpathways.africa xlr8leader.com aspiretables.com halogengreens.com izflo.com plus27digital.com balonde.com giinoe.com whatsappcommerce.africa legateeledger.com lispaprojects.com ledgerlunatics.com natrockenergy.com kellydeklerk.com wellnesscribe.com stillgrazing.com sbekkie.com mmelehealth.com mbusokhozainstitute.com lovenlaughsgifts.com nurtureclean.com eastafrika.africa officiallinks.africa shmaak.com lindytheva.com interiorwarehousegroup.com elliotdalescoop.com gfgr.xyz oaklandaero.space dtaincorporated.co.za regadvance.net schoolwearsouthafrica.com laughingloom.com resh2.com kznfastners.co.za redtargereng.tech regadvance.org f1sa.org inala.life re-sourced.africa ciscofoods.com zimbabwesafaricompany.com inalacorp.com qexconsulting.com onemoreus.com onemorena.com kukhuluplant.com royalecoffeeco.com regadvance.com wibus.co.za spindoctor.tech africanbricswomensplatform.org afropay.africa phmg.africa jbez.africa nadiv.co.za tcbusinessschool.com takeatyre.com cfpropertyplug.com shushusauce.com sepromin.com lieweheksie.com excapetravel.com igpower.world divinestudio.store thebigbang.store sweatex.org godshousebc.org brawlerscommunity.org maintenancemanager.online ubuntree.africa umba.africa collaboverse.africa sweatex.africa warburton1.com thesweethyper.com sweethyper.com humainegroup.com modularonehomes.com luminolux.com ivrevivelounge.com chromebooks.tech vutomitisanes.store theparavantpath.org upanaesthesia.org pet-collective.com orange-zone.com rentawayct.com igbomina.net theownersguide.africa lumos.africa armadalemuseum.com armadale-museum.com phluf.com buzzadzz.com nofateai.com rjcattorneys.com ferrari-safari.com jifefoundation.org f-si.net iragi.dev everfuel.africa kekana.africa maze.africa dollarzar.com capitalspc.com canna-oasis.com peaklex.com bytesizegraphics.com gymmafrica.com junionline.com udumo.world howsway.store sancagr.org missx.online redrhino.africa ronwen30foundation.africa fxa.africa scarletwhite.africa moiafrika.africa vectauma.com scarlet-white.com healthandwellnesslibrary.com midinvestgroup.com zinziemporium.com

Malware Detected on Host

Count: 2 97e41ab50e9538836c9ef1c4a9f8382c244a256d9e8b46d6b5942ca8620dfcfa 411cafa4518741ae6b3afdf5b2149161077a492b83b874c55699e6edf2a04296

Open Ports Detected

25 443 80

Map

Whois Information

• NetRange: 169.1.0.0 - 169.1.255.255
• CIDR: 169.1.0.0/16
• NetName: AFRINIC-ERX-169-1-0-0
• NetHandle: NET-169-1-0-0-1
• Parent: NET169 (NET-169-0-0-0-0)
• NetType: Transferred to AfriNIC
• OriginAS:
• Organization: African Network Information Center (AFRINIC)
• RegDate: 2010-11-03
• Updated: 2010-11-17
• Comment: This IP address range is under AFRINIC responsibility.
• Comment: Please see http://www.afrinic.net/ for further details,
• Ref: https://rdap.arin.net/registry/ip/169.1.0.0
• OrgName: African Network Information Center
• OrgId: AFRINIC
• Address: Level 11ABC
• Address: Raffles Tower
• Address: Lot 19, Cybercity
• City: Ebene
• StateProv:
• PostalCode:
• Country: MU
• RegDate: 2004-05-17
• Updated: 2015-05-04
• Comment: AfriNIC - http://www.afrinic.net
• Comment: The African & Indian Ocean Internet Registry
• Ref: https://rdap.arin.net/registry/entity/AFRINIC
• OrgTechHandle: GENER11-ARIN
• OrgTechName: Generic POC
• OrgTechPhone: +230 4666616
• OrgTechEmail: abusepoc@afrinic.net
• OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
• OrgAbuseHandle: GENER11-ARIN
• OrgAbuseName: Generic POC
• OrgAbusePhone: +230 4666616
• OrgAbuseEmail: abusepoc@afrinic.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN

Links to attack logs

****** ****** ******