Back to IOCs

IOC Details

IP

Indicator

161.248.189.72

Tag

honeypot

Source

4

First seen

2026-03-11 13:54:04

Last seen

2026-05-19 19:29:39

Hits

5

Comment history

  • 2026-05-19

    Observed 227 times. Targeted ports: 22. Country: Bangladesh. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port. Usernames: claude, root.

  • 2026-03-20

    Observed 86 times. Targeted ports: 22. Country: Bangladesh. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port. Usernames: erpuser, hafiz, lab, lima, root and 3 more.

  • 2026-03-11

    Observed 31 times. Targeted ports: 22. Country: Bangladesh. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port. Usernames: david, facturacion, minecraft.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID Indicator Type Tag Source Last seen Actions
295545
88.99.213.30
IP malware 11 2026-05-19 22:58:41 IOC Record
262799
91.231.89.160
IP honeypot 4 2026-05-19 22:44:36 IOC Record
10449
185.168.192.71
IP honeypot 4 2026-05-19 22:44:36 IOC Record
9910
185.168.192.72
IP honeypot 4 2026-05-19 22:44:36 IOC Record
9648
185.44.67.117
IP honeypot 4 2026-05-19 22:44:36 IOC Record