50.201.48.60 Threat Intelligence and Host Information

Share on:
Apr 25, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Likely Malicious Host 🟠 56/100

Host and Network Information

  • Mitre ATT&CK IDs: T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110 - Brute Force, T1110.004 - Credential Stuffing
  • Tags: cowrie, scanners, ssh, vultr

  • View other sources: Spamhaus VirusTotal

  • Country: United States of America
  • Network: AS7922 comcast
  • Noticed: 3 times
  • Protcols Attacked: ssh
  • Countries Attacked: Poland

Open Ports Detected

1723 21 22 80 8728

CVEs Detected

CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-20012 CVE-2016-8858 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-19052 CVE-2018-20685 CVE-2019-11072 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-28531

Map

Whois Information

  • NetRange: 50.128.0.0 - 50.255.255.255
  • CIDR: 50.128.0.0/9
  • NetName: CCCH3-4
  • NetHandle: NET-50-128-0-0-1
  • Parent: NET50 (NET-50-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS7922
  • Organization: Comcast Cable Communications, LLC (CCCS)
  • RegDate: 2010-10-21
  • Updated: 2021-01-25
  • Ref: https://rdap.arin.net/registry/ip/50.128.0.0
  • OrgName: Comcast Cable Communications, LLC
  • OrgId: CCCS
  • Address: 1800 Bishops Gate Blvd
  • City: Mt Laurel
  • StateProv: NJ
  • PostalCode: 08054
  • Country: US
  • RegDate: 2001-09-18
  • Updated: 2020-11-18
  • Ref: https://rdap.arin.net/registry/entity/CCCS
  • OrgTechHandle: IC161-ARIN
  • OrgTechName: Comcast Cable Communications Inc
  • OrgTechPhone: +1-856-792-2300
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IC161-ARIN
  • OrgAbuseHandle: NAPO-ARIN
  • OrgAbuseName: Network Abuse and Policy Observance
  • OrgAbusePhone: +1-888-565-4329
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/NAPO-ARIN
  • OrgRoutingHandle: ROUTI25-ARIN
  • OrgRoutingName: Routing
  • OrgRoutingPhone: +1-856-792-2300
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/ROUTI25-ARIN

Links to attack logs

vultrwarsaw-ssh-bruteforce-ip-list-2023-04-24