66.135.227.178 Threat Intelligence and Host Information

Share on:
May 06, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Known Malicious Host 🔴 75/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force, T1498 - Network Denial of Service, T1499 - Endpoint Denial of Service, T1499.002 - Service Exhaustion Flood
  • Tags: Cyclops, DDOS, DDoS, Gamardeon, HEAD Floods, HermeticWiper, IsaacWiper, KillNet, Killnet, PartyTicket, T1498, T1499, WhisperGate, attack ddos, botnet, cc.py, ddos, list ips, russia, russian, ukraine, vnc
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: socks_proxy_1d, socks_proxy_30d, socks_proxy_7d, stopforumspam_180d, stopforumspam_365d

  • Country: United States of America
  • Network: AS21686 systemmetrics corporation
  • Noticed: 50 times
  • Protcols Attacked: SSH
  • Countries Attacked: Russian Federation

Malware Detected on Host

Count: 6 5ee96cce83902ae9cb52fafac4479412f4d12bfc9b699cb81763f140e7b979a8 a3c4a04d46c8d8eb306f70ca12e369a425b9692fa03821ae58fb114d0f4f9c20 b3272c0cccc8a11e145ff2c1cfaf4083c9ab5619c0bbaf304e97dff116b286a3 dfe0ba595467101ba020be2f968abc376b82112b818019f2cf993ca1a67cb433 366acc456557b3cdde45aab1a390af9fbfedaeb1b5c6ffee5d88cb845bb41ede 658698794f0f8ffeb830e95a5777f6c9c2f3747ba488806a35f1791840ea6020

Map

Whois Information

  • NetRange: 66.135.224.0 - 66.135.255.255
  • CIDR: 66.135.224.0/19
  • NetName: SYSMETRICS-BLK-1
  • NetHandle: NET-66-135-224-0-1
  • Parent: NET66 (NET-66-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: SystemMetrics Corporation (SYSTEM-177)
  • RegDate: 2001-07-13
  • Updated: 2012-03-02
  • Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
  • Ref: https://rdap.arin.net/registry/ip/66.135.224.0
  • OrgName: SystemMetrics Corporation
  • OrgId: SYSTEM-177
  • Address: 900 Fort Street Mall, Suite 250
  • City: Honolulu
  • StateProv: HI
  • PostalCode: 96813
  • Country: US
  • RegDate: 2001-06-08
  • Updated: 2017-01-28
  • Ref: https://rdap.arin.net/registry/entity/SYSTEM-177
  • OrgAbuseHandle: EF228-ARIN
  • OrgAbuseName: Ford, Earl
  • OrgAbusePhone: +1-808-782-3532
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/EF228-ARIN
  • OrgTechHandle: EF228-ARIN
  • OrgTechName: Ford, Earl
  • OrgTechPhone: +1-808-782-3532
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/EF228-ARIN

Links to attack logs

roxy-ip-list-2023-05-03 roxy-ip-list-2023-05-05