20.193.141.133 Threat Intelligence and Host Information

Oct 01, 2024 ipinfopage

General

IP Address
20.193.141.133
IPv4 Address
Location
🇮🇳 Pune, India
IN
Network
AS8075
MICROSOFT-CORP-MSN-AS-BLOCK
Threat Score
48/100
Medium Risk
bruteforceBruteforceBrute-ForceDDoSRTBHsshSSH
Attack Intelligence
MITRE ATT&CK Techniques
T1110 - Brute Force, T1498 - Network Denial of Service
Open Ports Detected
22
Geographic Location
Country
India
City
Pune
Region
Maharashtra
Coordinates
18.6161, 73.7286
Network Information
ASN
AS8075
Organization
MICROSOFT-CORP-MSN-AS-BLOCK
Network
AS8075 MICROSOFT-CORP-MSN-AS-BLOCK
WHOIS Information
NetRange
20.192.0.0 - 20.255.255.255
CIDR
20.192.0.0/10
NetName
MSFT
NetHandle
NET-20-192-0-0-1
Parent
NET20 (NET-20-0-0-0-0)
NetType
Direct Allocation
OriginAS
Organization
Microsoft Corporation (MSFT)
RegDate
1998-07-10
Updated
2024-03-18
Ref
https://rdap.arin.net/registry/entity/MSFT
OrgName
Microsoft Corporation
OrgId
MSFT
Address
One Microsoft Way
City
Redmond
StateProv
WA
PostalCode
98052
Country
US
Comment
* IOC@microsoft.com
OrgTechHandle
MRPD-ARIN
OrgTechName
Microsoft Routing, Peering, and DNS
OrgTechPhone
+1-425-882-8080
OrgTechEmail
IOC@microsoft.com
OrgTechRef
https://rdap.arin.net/registry/entity/MRPD-ARIN
Attack Logs
Date Target Location Protocol Link
2024-10-01 Toronto, Canada SSH View Log

  • Country: India
  • Network: AS8075 microsoft corporation
  • Noticed: 5 times
  • Protocols Attacked: ssh
  • Countries Attacked: Australia

Malware Detected on Host

Count: 1 f43062faa86bc7b203ecd922c9ce1b6ce5e1186b31b227fff163d2ed1b5ec978

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2023-51767 CVE-2024-6387

Disclaimer
This page contains threat intelligence information for the IPv4 address 20.193.141.133 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.