221.143.48.143 Threat Intelligence and Host Information

Share on:

General

This page contains threat intelligence information for the IPv4 address 221.143.48.143 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 60/100

Host and Network Information

  • Mitre ATT&CK IDs: T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110 - Brute Force, T1110.004 - Credential Stuffing
  • Tags: Bruteforce, Nextray, SSH, aws, bruteforce, cowrie, cyber security, fail2ban, ioc, la, lafusioncenter, louisiana, malicious, phishing, scanners, ssh, tsec
  • View other sources: Spamhaus VirusTotal

  • Country: South Korea
  • Network: AS9318 sk broadband co ltd
  • Noticed: 50 times
  • Protcols Attacked: ssh
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: gu-korea.com undercarriage.cn careplusone.co.kr birungroup.com caffelode.com banpumsotore.com applekorea.xyz aplusdocsusil.com 521-8181.com 3ssada.com anypt.com bobjip.net bobjip.kr baiksan.xyz amweb.co.kr 2ssada.com bono55.com bigregression.net bigregression.com atryzkr.com 1bangyo.kr bullseyezone.com bestspot.kr benchpress.kr backstager.com autodoc.kr alpikorea.com ad-korea.com 119z.com 010xt.com bone88.net ardunity.xyz 888ariix.com 2000rice.com bluestamp.biz ardunity.com awontrading.com 9456re.com 369cvre.com attonix.com epass.xyz c-link.kr bongtecalli.com bonggu.xyz bonafleur.com beomeo.xyz aropump.kr 4mkorea.com 2k-korea.com cafere2016.com buller.kr care551.com care549.com care547.com etoon.xyz 626ial.com 624ial.com 622ial.com ch-ich.com bong-idc.xyz bodacommerce.com 2000ssal.xyz certainteed.co.kr cbasecamp.com asscity.xyz bombomanu.com beaconboy.net alstnrrj.com acnjp.biz acncn.biz acnchina.biz ykntec.com cellkissglobal.com bnbskorea.com bytheway.xyz bigdipper.xyz acnph.xyz acnph.net acnjp.xyz acnjapan.xyz acnjapan.org acncn.xyz acncn.org acnchina.xyz bokyung.xyz allblack.xyz 041-622-9494.xyz acncn.info apt2me.com acnworld.net acnsvp.net chalees.net bdhi.kr 0yousee.com btobinside.com akei.kr 87cae.com 85cae.com 83cae.com 1930company.com bienvr.com agnes-korea.com 789mkt.com bonsaitools.kr bdindustry.net bdindustry.kr bciakorea.com art4photo.com arplatform.net bremakorea.com bookcance.com 24ssada.kr 1ship.co.kr 1600-5589.com ainnco.net aglet.co.kr 8282119.com 1total.net az3337.co.kr carpediemglobal.com biganalyses.com bluemeditech.com balaclava.co.kr alistcorp.com 000xt.com becomingmarket.com caffehelio.com ableikea.com 01040008588.com 61via.com 60via.com 59via.com 58via.com 57via.com bizapptree.com adamascafe.com 999th.kr 222via.com 007via.com brandnewnetworks.com bksteel.net adclickpress.com benirgroo.com artdesgin.kr artdesgin.com acrozen.com 56via.com 54via.com 53via.com 50via.com 49via.com 48via.com 47via.com 46via.com 45via.com bobslhi.com aucommerce.co.kr c-nergycity.org c-nergycity.net c-nergycity.com 555via.com 44via.com 42via.com 41via.com 40via.com 38via.com baglebagle.com arspookiz.com bravesquare.kr 77via.com bravesquare.net 37via.com 36via.com 35via.com 34via.com 33via.com 32via.com cail512.com cail508.com cail502.com bobsli.com callaent.com bluechip-cn.com bdrnd.com 3s3g.com aonewt.com beanss.net bakso365.com ahnmarket.com avplay19.net 4nf.kr carpresso.co.kr btally.com 6sexo.com 27via.com 10sexo.com bionut.net accbeauty.com 31via.com 30via.com 29via.com 28via.com 26via.com 1stuser.com carmna.net busanmna.net busanmna.com bebeggone.com bangozone.com 19via.com 18via.com 23via.com 22via.com 20via.com a-t-o.org bizcollabo.com av19play.net asiayoungforum.com alibabaresume.com bigcup8.com autorunkorea.com altrosomejang.com asianyoungforum.com akhanglobal.com basketballkorea.net asiayoungforum.net asiayoungforum.kr asianyoungforum.net asianyoungforum.kr 24ssada.net alpallifeglobal.com addplus-korea.com 24ssada.com 16via.com 998-5000.com 17via.com 15via.com bestian365.com beautifulhands.org alphayongin.com acelex.co.kr 5dalant.com alphayongin.net alphayongin.kr 6000xt.com 5000xt.com 2000xt.com 19970218.net 14via.com 13via.com 11via.com 1000xt.com 0900t.com 0808t.com 0800t.com 0707t.com 0700t.com 060t.com 0606t.com 0600t.com 0505t.com 0500t.com 0400t.com 0303t.com 0300t.com 0202t.com 0200t.com camerappot.com byeolmori.com byd070.com bomasa.com beffreport.com 9000xt.com 70t80.com 7000xt.com 4000xt.com 333t1.com 333t0.com 3000xt.com caffedecor.com beffreport.net beffreport.kr 33993993.com 10t0.com bts-suga.com 99t81.com 94t36.com 92t18.com 900t0.com 800t0.com 700t0.com 49t89.com cdlife.com boonmin.net boonmin.kr bajuo.com auruminv.com aro-pump.net 4989119.com 960315.net cal346.com c1lpg.com bigsale2.com bigsale1.com beautyilbo.com arkbulk.com 3ncube.com 16bungee.com cafeforesta.com burugo.net bigsale2.net bigsale1.net apt7you.com ansaninfo.com 3dmagiccookie.net 3dmagiccookie.kr 3dmagiccookie.com amazing-youth.com ceraconic.com blinkeyelid.com ansflower.com 501korea.com ab-pet.com allworldtour.net allworldtour.kr ab-pet.net ab-pet.kr bymomstore.com andanteshop.com care608.com care598.com care588.com care578.com buildingsmart.co.kr btnworld.co.kr bekjo.co.kr bebepure.co.kr applet.co.kr akbosarang.co.kr 9in.kr care556.com care546.com care536.com care526.com byunduris.com auberosee.com ansan1.com baduki.org bzbusy.com 16661311.com austerewood.com accompanytax.com 01087065247.com ceoplan.net care465.com care455.com care445.com abaeternokorea.com by-redion.com araonbiz.com care435.com care425.com care405.com care395.com care375.com ace-um.com care385.com care355.com callbuslab.com care335.com care325.com alsmart.kr amolang.kr care285.com care275.com care265.com care252.com ballvicshop.com anchovyrepublic.com care212.com bbibig.com araengci.com care662.com care542.com care264.com care223.com cellinshop.com axis-korea.com bizkamp.net 100whago.net 100whago.kr 100whago.com 100hago.net 100hago.kr 100hago.com camerareview.kr allcupcake.com caracosmetic.com able5.com bstreat.com bkcube.com ztoon.kr bsresources.com caree8.com caree7.com caree6.com caree5.com caree4.com caree1.com caree3.com caree2.com branduniversity.kr bluetv24.com arokn.org akbosarang.com bumuda.com 01071812112.com ast23.kr 19web-toon.net americanfoodtruck.net americanfoodtruck.kr 2012sunlight.com 8ollowme.net 8ollowme.kr 8ollowme.com 8ollow.net 8ollow.kr 8ollow.com cargotalktalk.com blacksilicawellness.com 3dprinta.kr beaconiot.net aoa23.kr 01055337494.com 01044401111.com cgi.mailplug.com bsp-kr.com bictrade.com albagirls.net 3look.net bicstock.com atozinternational.net actionslugger.net actionslugger.com camkoltd.com abeauty23.net abeauty23.kr abeauty23.com ateamto.com bickorea.com 369flower.com bibagame.com bbibbiselca.net bbibbiselca.com balboadance.com ahop.kr casadehan.com artyaplay.com blooming1st.com bivagame.com bazickorea.com balboashoes.com akcls.com 3dcamp.kr aeioustore.com 1q84churros.net bohumsupermarket.net andrewmall.com alynnhouse.com abeauty24.net abeauty24.kr abeauty24.com 4linaege.net 4linaege.kr 4linaege.com 16008390.net agripang.com bxsteelkorea.com apeop.com cardinside.net bonuskorea.net automatching.net aps007.com bonus645.net bonus645.kr bonus645.com cafefrenchbull.com adcm.biz 1movie.kr dweng.co.kr alllim.net bestir.net brandyk.com 4ulogix.com apartinterior.com avechandshop.com aslaglobal.com adpropose.com betheflower.com baromom.net

Malware Detected on Host

Count: 5 07a54eac6447d2918c9d1f4f4466c4da4377c3a4385325480aee0669c327b7ad 07a54eac6447d2918c9d1f4f4466c4da4377c3a4385325480aee0669c327b7ad 1a4e3ff0a3ad0efac70820ad1477fd0f2b79bd15b9e57632fe49770376400057 6885560faa998d155ad5cc46ac0e96a4c50cd3892ed9376b9aed238da83f0930 d30d8877dd17cd846062a00ead5f5dff1778952e62e38d4fa152bb9566abcf0a

Map

Whois Information

  • query : 221.143.48.143
  • IPv4주소 : 221.138.0.0 - 221.143.255.255 (/14+/15)
  • 기관명 : 에스케이브로드밴드주식회사
  • 서비스명 : broadNnet
  • 주소 : 서울특별시 중구 퇴계로 24
  • 우편번호 : 04637
  • 할당일자 : 20030602
  • 이름 : IP주소 담당자
  • 전화번호 : +82-80-828-2106
  • 전자우편 : [email protected]
  • IPv4주소 : 221.143.48.0 - 221.143.48.255 (/24)
  • 기관명 : 에스케이브로드밴드주식회사
  • 네트워크 구분 : INFRA
  • 주소 : 서울특별시 중구 퇴계로
  • 우편번호 : 04637
  • 할당내역 등록일 : 20061214
  • 이름 : IP주소 담당자
  • 전화번호 : +82-80-828-2106
  • 전자우편 : [email protected]
  • IPv4 Address : 221.138.0.0 - 221.143.255.255 (/14+/15)
  • Organization Name : SK Broadband Co Ltd
  • Service Name : broadNnet
  • Address : Seoul Jung-gu Toegye-ro 24
  • Zip Code : 04637
  • Registration Date : 20030602
  • Name : IP Manager
  • Phone : +82-80-828-2106
  • E-Mail : [email protected]
  • IPv4 Address : 221.143.48.0 - 221.143.48.255 (/24)
  • Organization Name : SK Broadband Co Ltd
  • Network Type : INFRA
  • Address : Seoul Jung-gu Toegye-ro
  • Zip Code : 04637
  • Registration Date : 20061214
  • Name : IP Manager
  • Phone : +82-80-828-2106
  • E-Mail : [email protected]

Links to attack logs

bruteforce-ip-list-2020-11-16 bruteforce-ip-list-2020-10-14 bruteforce-ip-list-2020-07-01 bruteforce-ip-list-2021-03-19 bruteforce-ip-list-2021-01-28 bruteforce-ip-list-2020-01-28 bruteforce-ip-list-2020-08-06 aws-ssh-bruteforce-ip-list-2021-02-06 bruteforce-ip-list-2020-10-15 bruteforce-ip-list-2020-09-22