180.252.243.84 Threat Intelligence and Host Information

ipinfopage

General

This page contains threat intelligence information for the IPv4 address 180.252.243.84 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

🟡 Low Risk — 37/100

Geographic Location

Host and Network Information

  • View other sources: Spamhaus VirusTotal Shodan AbuseIPDB
  • Country: Indonesia
  • Network: AS7713 pt telekomunikasi indonesia
  • Noticed: 48 times
  • Countries Attacked: Australia, United Kingdom of Great Britain and Northern Ireland
  • Open Ports: 22, 4500, 500
  • Tor Node: No

Tags

  • Oracle
  • RDP
  • UK
  • initiator ip
  • nmap
  • port-scan
  • tsec

MITRE ATT&CK TTPs

  • T1110 - Brute Force

Attack Log References

Whois Information

NetRange: 164.92.64.0 - 164.92.255.255 CIDR: 164.92.128.0/17, 164.92.64.0/18 NetName: DO-13 NetHandle: NET-164-92-64-0-1 Parent: NET164 (NET-164-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: DigitalOcean, LLC (DO-13) Ref: https://rdap.arin.net/registry/ip/164.92.64.0 NetRange: 164.92.64.0 - 164.92.255.255 OrgName: DigitalOcean, LLC CIDR: 164.92.128.0/17, 164.92.64.0/18 NetName: DO-13 OrgId: DO-13 NetHandle: NET-164-92-64-0-1 Address: 101 Ave of the Americas Parent: NET164 (NET-164-0-0-0-0) Address: FL2 NetType: Direct Allocation OriginAS: City: New York Organization: DigitalOcean, LLC (DO-13) StateProv: NY RegDate: 2020-05-04 Updated: 2020-05-04 PostalCode: 10013 Ref: https://rdap.arin.net/registry/ip/164.92.64.0 Country: US OrgName: DigitalOcean, LLC RegDate: 2012-05-14 OrgId: DO-13 Updated: 2022-05-19 Address: 101 Ave of the Americas Address: FL2 Ref: https://rdap.arin.net/registry/entity/DO-13 City: New York OrgAbuseHandle: ABUSE5232-ARIN StateProv: NY OrgAbuseName: Abuse, DigitalOcean PostalCode: 10013 OrgAbusePhone: +1-347-875-6044 Country: US OrgAbuseEmail: abuse@digitalocean.com RegDate: 2012-05-14 Updated: 2022-05-19 OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN Ref: https://rdap.arin.net/registry/entity/DO-13 OrgTechHandle: NOC32014-ARIN OrgAbuseHandle: ABUSE5232-ARIN OrgAbuseName: Abuse, DigitalOcean OrgTechName: Network Operations Center OrgAbusePhone: +1-347-875-6044 OrgTechPhone: +1-347-875-6044 OrgAbuseEmail: abuse@digitalocean.com OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN OrgTechEmail: noc@digitalocean.com OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgTechHandle: NOC32014-ARIN OrgNOCHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-347-875-6044 OrgNOCName: Network Operations Center OrgTechEmail: noc@digitalocean.com OrgNOCPhone: +1-347-875-6044 OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgNOCEmail: noc@digitalocean.com OrgNOCHandle: NOC32014-ARIN OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-347-875-6044 a Lt. 7 OrgNOCEmail: noc@digitalocean.com address: Jl. Kebonsirih No.12 OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN address: JAKARTA a Lt. 7 address: Jl. Kebonsirih No.12 country: ID address: JAKARTA phone: +62-21-3860500 country: ID fax-no: +62-21-3861215 phone: +62-21-3860500 e-mail: ip-admin@telkom.net.id fax-no: +62-21-3861215 admin-c: HM444-AP e-mail: ip-admin@telkom.net.id admin-c: HM444-AP tech-c: HM444-AP tech-c: HM444-AP nic-hdl: AR165-AP nic-hdl: AR165-AP notify: hostmaster@telkom.net.id notify: hostmaster@telkom.net.id mnt-by: MAINT-TELKOMNET mnt-by: MAINT-TELKOMNET last-modified: 2008-09-04T07:54:16Z person: PT Telkom Indonesia Hostmaster last-modified: 2008-09-04T07:54:16Z nic-hdl: HM444-AP person: PT Telkom Indonesia Hostmaster e-mail: hostmaster@telkom.net.id nic-hdl: HM444-AP address: PT. TELKOM INDONESIA address: Menara Multimedia Lt. 7 e-mail: hostmaster@telkom.net.id address: Jl. Kebonsirih No.12 address: PT. TELKOM INDONESIA address: JAKARTA phone: +62-21-3860500 address: Menara Multimedia Lt. 7 fax-no: +62-21-3861215 address: Jl. Kebonsirih No.12 country: ID notify: hostmaster@telkom.net.id address: JAKARTA mnt-by: MAINT-TELKOMNET phone: +62-21-3860500 last-modified: 2008-09-04T07:29:40Z route: 180.252.243.0/24 fax-no: +62-21-3861215 origin: AS7713 country: ID descr: Telekomunikasi Indonesia (PT) notify: hostmaster@telkom.net.id mnt-by: MAINT-TELKOMNET mnt-by: MAINT-TELKOMNET last-modified: 2021-08-24T20:25:12Z last-modified: 2008-09-04T07:29:40Z route: 180.252.243.0/24 origin: AS7713 descr: Telekomunikasi Indonesia (PT) mnt-by: MAINT-TELKOMNET last-modified: 2021-08-24T20:25:12Z