24.105.29.24 Threat Intelligence and Host Information

Jul 04, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 24.105.29.24 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 34/100

Host and Network Information

Mitre ATT&CK IDs: T1012 - Query Registry
Tags: 24.105.29.24, agent tesla, android, breached, com laude, communicating, contacted, contacted urls, csc corporate, CVE-2018-8120, domain name, domain robot, domains, dynadot inc, execution, files, first, gandi sas, gang breached, historical ssl, irr.blizzard.com, irr.blizzard.com., keysystems gmbh, kgs0, kls0, metro, net108, net1080000, nethandle, netrange, network pty, orgabusehandle, orgdnshandle, orgdnsref, orgtechhandle, orgtechref, porkbun llc, psiusa, ransomware gang, redline stealer, red team, referrer, ssl certificate, submitters, team, tucows, urls http, urls url, utc submissions, whois lookup, whois record, whois whois
View other sources: Spamhaus VirusTotal

Country: United States
Network:
Noticed: 2 times
Protocols Attacked: SSH
Passive DNS Results: iir.blizzard.com iir.blizzard.com.

Malware Detected on Host

Count: 1721 31a44fc8ec0e885057132d7e8c4461c7549012e09fb216a645904308f63e47e1 5e95e131e7a5fcf5668bba488e2ac8a8ab1d02cab21244550aa11beb46ea6606 334eb68be452fa3f72064ab3e771bce30131357764c8321c6d5f94fcbfe377d2 7d32d1fb2b91cb3bcf79451391ba97fa3d5363b18b481fff7c862c55bfcc9976 857c5d54771a481e2b6a462045f153c45ac0f704faeaabc9e421482ab04ebafe fabad4cf690066b3675d29d40d1f92ddb311afa12f257e7bedd72fe0fa039dbd c85887f654c01e544764c06a379e02a954d914cd0b89f7328588a331114df9e3 ac2cb21599c95f6f885910e0ca4476ea454a4e0672553a5daf8182f36ffcf508 a3355e70070c07cb44f032180f58695c7b8ec7e2a0c89af39a311aa1785b69e3 432470cc0f49652fd370d4ebdf825ae467d2a8efcb4bef1abc5388e4f2849094

Map

Whois Information

NetRange: 24.105.0.0 - 24.105.63.255
CIDR: 24.105.0.0/18
NetName: BLIZZARD
NetHandle: NET-24-105-0-0-1
Parent: NET24 (NET-24-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS57976
Organization: BLIZZARD ENTERTAINMENT INC (BLIZZA-3)
RegDate: 2015-02-25
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/24.105.0.0
OrgName: BLIZZARD ENTERTAINMENT INC
OrgId: BLIZZA-3
Address: 16215 Alton Pkwy
City: Irvine
StateProv: CA
PostalCode: 92618
Country: US
RegDate: 2001-12-23
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/BLIZZA-3
OrgAbuseHandle: IRAU-ARIN
OrgAbuseName: Internet Registry Admin - US
OrgAbusePhone: +1-949-955-1380
OrgAbuseEmail: peering@blizzard.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/IRAU-ARIN
OrgNOCHandle: IRAU-ARIN
OrgNOCName: Internet Registry Admin - US
OrgNOCPhone: +1-949-955-1380
OrgNOCEmail: peering@blizzard.com
OrgNOCRef: https://rdap.arin.net/registry/entity/IRAU-ARIN
OrgTechHandle: RAU23-ARIN
OrgTechName: Registry Admin - US
OrgTechPhone: +1-949-955-1380
OrgTechEmail: peering@blizzard.com
OrgTechRef: https://rdap.arin.net/registry/entity/RAU23-ARIN
RTechHandle: IRAU-ARIN
RTechName: Internet Registry Admin - US
RTechPhone: +1-949-955-1380
RTechEmail: peering@blizzard.com
RTechRef: https://rdap.arin.net/registry/entity/IRAU-ARIN

Links to attack logs

****** ****** ****** ******

Share on: