81.169.145.161 Threat Intelligence and Host Information

Nov 24, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 81.169.145.161 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 70/100

Host and Network Information

  • Mitre ATT&CK IDs: T1027 - Obfuscated Files or Information, T1053 - Scheduled Task/Job, T1080 - Taint Shared Content, T1102 - Web Service, T1210 - Exploitation of Remote Services, T1218 - Signed Binary Proxy Execution, T1220 - XSL Script Processing, T1486 - Data Encrypted for Impact, T1490 - Inhibit System Recovery, T1564 - Hide Artifacts, T1566 - Phishing

  • Tags: adwind, adwind rat, agent tesla, agenttesla, aggah, alienspy, all at, amadey, ammyy, ammyy admin, andromut, angler, apart, april, asyncrat, august, aurora, ave maria, axpergle, azorult, belarus, bitcoin, bladabindi, bokbot, browserpassview, chacha, chanitor, chatgpt, chthonic, click, cloudeye, cobalt strike, cobaltstrike, copy, cridex, crimson, crimson rat, cryptbot, crysis, cve201711882, cyber security, danabot, darkcomet, darkside, desktop, dharma, discord, dofoil, domains, dridex, dunihi, dyre, egregor, emotet, emotet malware, eternalblue, execution, fake net, fallout, fareit, february, first, flawedammy, flawedammyy, formbook, friendly, gandcrab, glupteba, gootkit, gozi, guloader, hancitor, hashes, hawkeye, hermes, houdini, hunter, hworm, icedid, ioc, iocs ip, jenxcus, june, kill, killswitch, loader, lockbit, loki bot, lokibot, macos, mailpassview, mailto, maldoc, malicious, malspam, malware, march, mars, maze, mega, mexico, microsoft, mimikatz, nanocore, nanocore rat, napoleon, nemty, netwalker, netwire, neutrino, next, Nextray, njrat, nuclear, open, orcus, orcus rat, panda banker, path, phishing, phobos, pinkslipbot, poisonivy, polish, pony, powershell, predator, predator pain, psexec, qakbot, qbot, quasar, quasar rat, raccoon, racealer, ransom, ransomware, rats, recent blog, redline, redline stealer, remcos, revenge, revenge rat, revil, ryuk, ryuk ransomware, scarimson, screen, seen, servhelper, service, shadow, siplog, smokeldr, smoke loader, smokeloader, snake, sockrat, sodinokibi, spelevo, squirrelwaffle, sticky, systembc, teamspy, teamviewer, terdot, thief, track them, trickbot, trojan, troldesh, ukraine, ursnif, vawtrak, vidar, virustotal, wannacry, wannycry, wcry, wcry ransomware, windigo, winrar, xtremerat, zbot, zloader

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: bambenek_banjori, bambenek_simda, cleanmx_phishing, cleanmx_viruses, hphosts_emd, hphosts_fsa, hphosts_psh, malwaredomainlist

  • Country: Germany
  • Network: AS6724 strato ag
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: salamiparty.online i-co.online lukas-zschocke.net jdkevents.net degoedeherder.info kung.email wallindesign.com hawksandsparrows.com marketingplaats.com merelheezen.com l-ermite.com yallahsurf.com ponyundpferd.com nordicstaysweden.com www.vukbremen.com lastchaos.wiki guide2germany.info dailyouth.cloud askstructural.com askbouw.com viktoria-und-stefan.com patrosvastgoed.com gta6trailer.com 3dgeco.com 5d-solutions.com kita-mit-herz.com freeyoungteen.com char-ly.store maybach-van.shop hqamsterdam.org beautifulplayingcards.org ny-kintana.org bigbandits.net hasenauer.info ari-spedition.com djpaddl.com city-galeriewien.com villaarmoniaalmunecar.com s-w-shop.com hallo-happy.com pfenningrobotics.com onderzoekmaaktbeter.com nilsbaukus.com rb-nt.com somehow.world dnc22.store amlro.org beule.online recpack.net mixit.digital cloudcomputing-wenyangyang.com marx09.com zulanusa.com build-the-bridge.com bragfin.com kaisersbachevents.com summerize.one pbronline.net wiel.ink lebenslust.info stadtfuehrerin.hamburg verifiq.digital artatelier-androsbesau.com ai-snacks.com angecatdesigns.com voodprint.com metzgerei-maisterl-gmbh.com laquirie.com ebonycandesign.com 3icontest.com kunstpause47.com friedafresh.com cyb3rwerk.net bunte-bewegende-bilder.info borie.digital anatomedi.com veterans-suit.com myesotrialplanner.com lars-bachmann-consulting.com gomsmed.com urmely.com ezebugwu.com nesaclinics-nederland.com www.augenarzt-eifel.com rwv.ruhr heinz.digital djcalimero.cloud watercolordreams.art dieticktack.com vesperboys.com larshalter.com zurkammerburg.com immobilienwebcampus.com planvelop.com poiascapital.com goldensportsmemorabilia.com guennewig.tech pphelper.net punkofcyber.net hapa-haustechnik.info www.mito-modell.info bkdevelopment.dev training360plus.cloud xn–mosai-8ua.com dufttest24.com varypicks.com hillerbinespricht.com panafrica-events.com psy4va.com killingjfk.com www.rustforever.net www.concept4u.info xn–brckmann-75a.org healthbridgegroup.org bits-gmbh.nrw startevo.net kreditkompass.net theartcompany.info bbqbikers.info ases.gmbh 0049.cool www.nlsa.website wmbastelstube.com asharaspirit.com toysstore24.com sizilien-villa.com space-egg.com shop1424.com maxusrealisation.com bonauerpartner.com jan-weinzierl.com www.adbearconsulting.com www.deprojecterij.com bgd-trade.org www.hammerprojekte.com autorostschutz.com damianstolkdesign.com calmaazores.com suedbadensauna.com seminarhaus-wendland.com michelle-wiesenthal.com genussspechte.com grnyld.com kinderchirurgie-heidelberg.com osmosisgroup.xyz jilsevensinteriors.store acoran.org feinfresh.org bambusleitung.net eefdevries.net reitzl.email tyriel.biz xn–paarberatung-mnchen-jbc.com abc-commerce.com anti-corruption-officer.com thenurseandcargiversnetwork.com teo-stocklots.com museumcooperations.com maku-food.com losbrasserieos.com lifeofrileyau.com bikebash144.com baabizz.com gambia-excursions.com elvaernst.com nowaytonorway.com meryembutik.shop printwerk.shop ml2-research.org pusch-your-life.org da-luigi.online weise-greise.net grillfestival.net gelecegimalmanya.net jociel.digital disdisabled.com ds-anitquitaetenhandel.com strategischebeschaffung.com mydrench.com immoretti.com inhalix.com boonstraservice.com koenig-wedding.com horse-protection.shop saya-coaching.net hammer-it.net sostoegang.net anomalist.net thelo.email www.bdb-germany.de bdb-germany.de windigshop.com walkerling.com tetik-automotive.com com-passion-coaching.com shopbyfleur.com serie-9.com ladhq.com legalbizlibrary.com idyllamsee.com kirabue.com fionapapers.com www.boborykin-partner.com focusfranken.online witelligence.info knowledgedatabase.info zeropulse.digital www.3sixtyfife.ch 3sixtyfife.ch www.gelszat.de alex444.com codelabexplorer.com herzundkopf.com schleitanne.com houtendraairamenonline.com gelszat.de inventovisual.com buddywalls.com jal-travel.com omnomyco.com eviamed.com eybi-fashion.com nursesgermany.com rosesholidays.com www.askenstrom.se askenstrom.se uplock.team jobbus.org dovgan.online infoblu.net vukbremen.com sheepjann.com howes-consulting.com lekdetectiegelderland.com zeitphasen.com jaypietersz.com opinionshirts.com kerzentattoo.com wikilights.space evolvedsystems.site lipit.shop mindyouself.org enduropark-hechlingen.online tetik.cloud teeshotguy.com digi-ps.com campingbaumbach.com vidro24.com spirit-of-lomi.com stasiunrecht.com straksolartechnik.com horse-attack.com leonelshout.com zserv-os.com isabel-roos.com billdisney.com bmartpro.com officialflorian.com kleineklimahelden.com www.selbstbestimmt-mit-handicap.net www.physio24ev.de physio24ev.de www.architectonics.biz www.palumbo.de www.wende-point.ch wende-point.ch palumbo.de machsmal.org sale-e-pepe.online chandee.info kaikosystems.cloud www.crm-beratung.cloud wagnersacademy.com cminke.com supersupremestudio.com syndicatexautomation.com shotintheroos.com setup-stand.com hausofenno.com mietperfekt.com miris-hundeschule.com panagana.com niklasphotography.org c-plate.org finanzfrauen-leipzig.org dtksvheubach.net glossyautospa.net haglit.net yogamed.net shopsuppor.biz workshop-wise.com cream-fabrics.com sweetbitesvending.com startuprightbt.com speakup-total.com soft-seed.com lok7119.com polderdorf.com oogstalkmaar.com ropesystemsolutions.com www.helmut-jung.com www.cmnpractice.com www.task-mining.com stroopwafel.website onlywayisdutch.store medizinartikel24.shop www.sabordelaselva.org www.herbatz.com trolli.org naturpfade.org jigglyjiggly.net xl-rental.com techview-studios.com miniheldenwelt.com martinavetter.com living-in-groningen.com johannssenskitchen.com uwrosengarten.com edmnordic.com www.muehlen.biz muehlen.biz mindbodymachinist.org i4ses.org datenschutz-direkt.info honoryourpennies.info my-time.care maininno.bayern smamblybite.com climatefreight.com papemi.com otto-dernau.com eugengeyer.com www.smart4food.org www.yourplaceforthemoment.com www.pytnoid.info scheurer.wtf flecks.studio fit4fights.shop ameland-ludergus.org donmoise.online europewideconnect.net thinkmac.info yusokan.dev webdesign-sobeck.com ajesth.com annas-beauty-studio.com cgpathetic.com skhlmshop.com spacetekk-visuals.com praxis-albers-rottmann.com getyourcanvas.com krachschmidt.com reisebuero-dorsten.com foerderverein-wohnpark-ahe.com www.nikow.space gommerselektro.tech mangawear.net vku-roblox.info pictureparty.cloud orly-massagen.berlin anfu-vvg.com andreeno.com trendingindustries.com tilinmania.com die-landarztpraxis.com hochzeits-catering-frankfurt.com purplesevencars.com kalidanifashion.com www.jaysonaut.com www.feghouli.com www.handelshof-ochmann.com www.fraeuleinwolfliebtdich.com www.mindthegapcnc.com www.heitse.info www.offineum.net www.halter.email www.xtreemquad.com www.versicherungsstelle.direct www.katoofficial.com offineum.net xtreemquad.com phit.tech theedeninstitute.org jetztfetzt.live tiffys-fellstuebchen.info myey.farm free-mail-service.email adbearconsulting.com tabakxxl.com cafe-terra-verde.com stichtingvoortoegang.com schickler-coaching.com hagnauer-gruppe.com zaidiengineering.com loxone-support.com zur-geul.com iconiciconsgallery.com gottadoitbb.com electronicsfilm.com www.gabrieleohliger.com dreikaesehoch-shop.org benzbrandmedia.org xn–hgy-sna.net trading-street.info guz.email xn–knigstdten-v5a4s.email bumblebeeman.dev buck.contact ap-p-investments.com alfa-acad.com timelessattitude.com lionsgroup-trading.com bela-festo-me.com galata-85.com daviduijen.nl entraco.tech torkraftwerk.store microgreenfarm.store paysdamour.org naturheilpraxis-jessica-eiber.org eototmobil.net frands.group artificial-artwork.com xn–clbrehochzeiten-vmbp.com amelie-und-bjoern.com voodoo-skateboards.com canalhouseshoots.com startrekcommunicatoraward.com mibellasie.com www.intufeel.com www.bruttonetto.fun meimcon.cloud eidmueller.net andreas.dance cd-inves.com sqr-ventures.com luciavoellinger.com interim-support.com prodiac-sicherheit.com ganzheitliches-lifecoaching.com www.fliegerklub-auerbach.de fliegerklub-auerbach.de www.lamano-gastro.com psychologic-consulting.org jugendgitarrenorchester.org kreiselimmobilien.net kolibrii.net xn–gefhlsbetont-flb.info anders-und-normal.com adnovstyle.com safestpv.com pfalz-immobilien.com benztours.com www.trendwerk-postcast.com next-g.tech spaceforbiodiversity.space wellenreiten-bayern.org augenoptik.online unavo.org der-werkzeug.net podologie-ahlen.info dreiling.dev loft.contact architektur-hanke.com hannescato.com bkbschutte.com epflytt.com www.autoschedule.org yo-logistik.site aktivitime.cloud xn–gartenkche-geb.com ashukur.com tempelzeit.com solar-sun-solutions.com msfsguide.com lailanibeauty.com yourroomyourlife.com printery-corporation.com bea-eike.com 9t5.tech deinmeeting.online fewo-digital.net ti-as-a-service.info xn–grnberger-honig-0vb.com hage-trading.com ms-ecom.com mikelkanne.com bbstratz.com benyaconsultancy.com unsinnigg.com new-male-leadership.com neunbaum.com shopno1.store what-to-wear.net tumo.koeln lavabis.info taxi-jena.cloud workinside.business xn–kurtwagnerinstitutideenwrfel-p7c.com twoinchestosunset.com

Malware Detected on Host

Count: 106 6459749433d9939bc90676b2571de073e88c34dd0639d67f598597e22db0530e b286feec5760973999bf324855d241e307d2c3dac4bfa1b57ef4e618e385116b 0e5d54f35707897ff3bac8bb9ac4a2a0bb19aca6626b166616e79849164b1e82 47a9f6ee5dac7872dba411e740369f3cbdd1a06623ea87df8c6b917fa98d185c 5fa9a205849cad3c7b7e1bc0d6c995eaa73b8a3f75f6094ee430ce84e937305e be6683d99fc4959498c87e58c9fd3a604c8ec76d70b948693c75ff076494e4af 5b861d02d467d45ba368898394894a5f1caca2d22e4ae1bb60db00fa7f14dc38 18c41c8be76f05418fb59305a1572d72288b22d9fc6b9da8144becfb497e76d7 3c76b1c0b890639167383f0a817c288127aee3f16b2327f41ab802747334b718 4a66f766ae5c323917a4ef0c1df21c13b1a2077b5c85d1313988062d0f45a1de

Open Ports Detected

21 443 80 8080

Map

Whois Information

  • inetnum: 81.169.144.0 - 81.169.148.255
  • descr: STRATO AG
  • netname: STRATO-RZG-KA
  • org: ORG-SRA1-RIPE
  • descr: Strato Rechenzentrum, Berlin
  • country: DE
  • admin-c: SRRC-RIPE
  • tech-c: SRRC-RIPE
  • status: ASSIGNED PA
  • mnt-by: STRATO-RZG-MNT
  • created: 2010-01-15T09:26:51Z
  • last-modified: 2020-11-10T11:39:47Z
  • organisation: ORG-SRA1-RIPE
  • org-name: Strato AG
  • country: DE
  • org-type: LIR
  • address: Otto-Ostrowski-Straße 7
  • address: 10249
  • address: Berlin
  • address: GERMANY
  • phone: +4972191374551
  • admin-c: SP20660-RIPE
  • abuse-c: SRAC-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: STRATO-RZG-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: STRATO-RZG-MNT
  • created: 2004-04-17T11:12:39Z
  • last-modified: 2023-06-14T08:03:06Z
  • admin-c: SH15342-RIPE
  • tech-c: SH15342-RIPE
  • tech-c: SP20660-RIPE
  • role: RIPE contact
  • address: STRATO AG
  • address: Otto-Ostrowski-Straße 7
  • address: D-10249 Berlin
  • address: Germany
  • phone: +49 30 39802-0
  • org: ORG-SRA1-RIPE
  • abuse-mailbox: abuse@strato.de
  • admin-c: SH15342-RIPE
  • tech-c: SH15342-RIPE
  • nic-hdl: SRRC-RIPE
  • mnt-by: STRATO-RZG-MNT
  • created: 2010-01-15T08:35:31Z
  • last-modified: 2023-01-02T09:13:13Z
  • admin-c: SP20660-RIPE
  • tech-c: SP20660-RIPE
  • route: 81.169.145.0/24
  • descr: STRATO AG
  • descr: prefix only advertised in case of DDoS
  • origin: AS6724
  • mnt-by: STRATO-RZG-MNT
  • created: 2014-02-18T16:19:03Z
  • last-modified: 2014-02-18T16:19:03Z
Share on: