51.15.132.43 Threat Intelligence and Host Information

Share on:
Dec 31, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 51.15.132.43 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 60/100

Host and Network Information

  • Mitre ATT&CK IDs: T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force

  • Tags: cowrie, cyber security, ioc, kfsensor, malicious, Nextray, phishing, rdp, ssh

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: haley_ssh

  • Country: France
  • Network: AS12876 online s.a.s.
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

123 1521 22 3306 80 8080

CVEs Detected

CVE-2006-20001 CVE-2012-6707 CVE-2014-6412 CVE-2015-2213 CVE-2015-3438 CVE-2015-3440 CVE-2015-5622 CVE-2015-5623 CVE-2015-5714 CVE-2015-5715 CVE-2015-5730 CVE-2015-5731 CVE-2015-5732 CVE-2015-5733 CVE-2015-5734 CVE-2015-7989 CVE-2015-8834 CVE-2016-10033 CVE-2016-10045 CVE-2016-10148 CVE-2016-1546 CVE-2016-1564 CVE-2016-2221 CVE-2016-4029 CVE-2016-4566 CVE-2016-4567 CVE-2016-4975 CVE-2016-4979 CVE-2016-5387 CVE-2016-5832 CVE-2016-5833 CVE-2016-5834 CVE-2016-5835 CVE-2016-5836 CVE-2016-5837 CVE-2016-5838 CVE-2016-5839 CVE-2016-6634 CVE-2016-6635 CVE-2016-6897 CVE-2016-7168 CVE-2016-7169 CVE-2016-8612 CVE-2016-8740 CVE-2016-8743 CVE-2016-9263 CVE-2017-14718 CVE-2017-14720 CVE-2017-14721 CVE-2017-14723 CVE-2017-14724 CVE-2017-14725 CVE-2017-14726 CVE-2017-15710 CVE-2017-15715 CVE-2017-16510 CVE-2017-17091 CVE-2017-17092 CVE-2017-17093 CVE-2017-17094 CVE-2017-20005 CVE-2017-3167 CVE-2017-3169 CVE-2017-5487 CVE-2017-5488 CVE-2017-5489 CVE-2017-5490 CVE-2017-5491 CVE-2017-5492 CVE-2017-5493 CVE-2017-5610 CVE-2017-5611 CVE-2017-5612 CVE-2017-6814 CVE-2017-6815 CVE-2017-6816 CVE-2017-6817 CVE-2017-6818 CVE-2017-6819 CVE-2017-7529 CVE-2017-7679 CVE-2017-8295 CVE-2017-9061 CVE-2017-9062 CVE-2017-9063 CVE-2017-9064 CVE-2017-9065 CVE-2017-9066 CVE-2017-9788 CVE-2017-9798 CVE-2018-10100 CVE-2018-10101 CVE-2018-10102 CVE-2018-11763 CVE-2018-1283 CVE-2018-12895 CVE-2018-1301 CVE-2018-1302 CVE-2018-1303 CVE-2018-1312 CVE-2018-1333 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2018-17189 CVE-2018-17199 CVE-2018-19296 CVE-2018-20147 CVE-2018-20148 CVE-2018-20149 CVE-2018-20150 CVE-2018-20151 CVE-2018-20152 CVE-2018-20153 CVE-2019-0196 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-10082 CVE-2019-10092 CVE-2019-10098 CVE-2019-16217 CVE-2019-16218 CVE-2019-16219 CVE-2019-16220 CVE-2019-16221 CVE-2019-16222 CVE-2019-16223 CVE-2019-16780 CVE-2019-16781 CVE-2019-17567 CVE-2019-17669 CVE-2019-17670 CVE-2019-17671 CVE-2019-17672 CVE-2019-17673 CVE-2019-17674 CVE-2019-17675 CVE-2019-20041 CVE-2019-20042 CVE-2019-20043 CVE-2019-20372 CVE-2019-8942 CVE-2019-8943 CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 CVE-2019-9787 CVE-2020-11026 CVE-2020-11027 CVE-2020-11028 CVE-2020-11029 CVE-2020-11030 CVE-2020-11985 CVE-2020-13938 CVE-2020-1927 CVE-2020-1934 CVE-2020-25286 CVE-2020-28032 CVE-2020-28033 CVE-2020-28034 CVE-2020-28035 CVE-2020-28036 CVE-2020-28037 CVE-2020-28038 CVE-2020-28039 CVE-2020-28040 CVE-2020-35452 CVE-2020-36326 CVE-2020-4046 CVE-2020-4047 CVE-2020-4048 CVE-2020-4049 CVE-2020-4050 CVE-2021-23017 CVE-2021-26690 CVE-2021-26691 CVE-2021-33193 CVE-2021-34798 CVE-2021-3618 CVE-2021-39275 CVE-2021-40438 CVE-2021-44223 CVE-2021-44224 CVE-2021-44790 CVE-2022-21661 CVE-2022-21662 CVE-2022-21663 CVE-2022-21664 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28330 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30556 CVE-2022-31813 CVE-2022-36760 CVE-2022-37436 CVE-2022-43497 CVE-2022-43500 CVE-2022-43504 CVE-2023-22622 CVE-2023-25690 CVE-2023-2745 CVE-2023-44487

Map

Whois Information

  • inetnum: 51.15.0.0 - 51.15.255.255
  • org: ORG-ONLI1-RIPE
  • netname: SCALEWAY
  • descr: Scaleway - Paris, France
  • country: FR
  • admin-c: MM42047-RIPE
  • tech-c: MM42047-RIPE
  • status: LEGACY
  • mnt-by: ONLINE-NET-MNT
  • created: 2016-02-22T15:25:27Z
  • last-modified: 2022-05-04T17:24:57Z
  • organisation: ORG-ONLI1-RIPE
  • mnt-ref: MNT-TISCALIFR-B2B
  • org-name: Scaleway
  • org-type: OTHER
  • address: 8 rue de la ville l’eveque 75008 PARIS
  • abuse-c: AR32851-RIPE
  • mnt-ref: ONLINE-NET-MNT
  • mnt-by: ONLINE-NET-MNT
  • created: 2015-07-10T15:20:41Z
  • last-modified: 2022-05-03T15:39:01Z
  • person: Mickael Marchand
  • address: 8 rue de la ville l’eveque 75008 PARIS
  • phone: +33173502000
  • nic-hdl: MM42047-RIPE
  • mnt-by: MMA-MNT
  • created: 2015-07-10T15:02:32Z
  • last-modified: 2016-02-23T12:43:25Z
  • route: 51.15.0.0/16
  • descr: SCALEWAY
  • descr: Paris, France
  • origin: AS12876
  • mnt-by: MNT-TISCALIFR
  • mnt-lower: ONLINE-NET-MNT
  • created: 2018-03-28T18:01:19Z
  • last-modified: 2022-05-03T10:05:57Z

Links to attack logs

** bruteforce-ip-list-2021-08-28 bruteforce-ip-list-2021-08-14 ** **