IOC Details

Comment history

• 2026-05-20

  Observed 6 times. Targeted ports: 5800. Country: United States. Reputation: known attacker.

• 2026-05-19

  Observed 18 times. Targeted ports: 443. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Wrong direction first Data.

• 2026-05-18

  Observed 1 times. Targeted ports: 53. Country: United States. Reputation: known attacker.

• 2026-05-15

  Observed 1 times. Targeted ports: 50000. Country: Canada. Reputation: known attacker.

• 2026-05-12

  Observed 20 times. Targeted ports: 47693. Country: United States. Reputation: known attacker.

• 2026-05-11

  Observed 16 times. Targeted ports: 2525. Country: United States. Reputation: known attacker.

• 2026-05-10

  Observed 15 times. Targeted ports: 9000. Country: United States. Reputation: known attacker.

• 2026-05-09

  Observed 3 times. Targeted ports: 427. Country: United States. Reputation: known attacker.

• 2026-05-08

  Observed 15 times. Targeted ports: 1028. Country: United States. Reputation: known attacker.

• 2026-05-07

  Observed 1 times. Targeted ports: 47808. Country: United States. Reputation: known attacker.

• 2026-05-06

  Observed 1 times. Targeted ports: 53. Country: United States. Reputation: known attacker.

• 2026-05-02

  Observed 3 times. Targeted ports: 38520. Country: United States. Reputation: known attacker.

• 2026-05-01

  Observed 29 times. Targeted ports: 3389. Country: United States. Reputation: known attacker.

• 2026-04-30

  Observed 18 times. Targeted ports: 22. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port.

• 2026-04-28

  Observed 3 times. Targeted ports: 623. Country: United States. Reputation: known attacker.

• 2026-04-27

  Observed 6 times. Targeted ports: 8090. Country: United States. Reputation: known attacker.

• 2026-04-22

  Observed 20 times. Targeted ports: 3344. Country: United States. Reputation: known attacker.

• 2026-03-25

  Observed 23 times. Targeted ports: 8883. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

• 2026-03-22

  Observed 7 times. Targeted ports: 4002. Country: United States. Reputation: known attacker.

• 2026-03-17

  Observed 18 times. Targeted ports: 8005. Country: United States. Reputation: known attacker.

• 2026-03-16

  Observed 10 times. Targeted ports: 21. Country: Canada. Reputation: known attacker.

• 2026-03-15

  Observed 22 times. Targeted ports: 4343. Country: Canada. Reputation: known attacker.

• 2026-03-14

  Observed 7 times. Targeted ports: 8333. Country: Canada. Reputation: known attacker.

• 2026-03-13

  Observed 3 times. Targeted ports: 789. Country: United States. Reputation: known attacker.

• 2026-03-10

  Observed 13 times. Targeted ports: 5672. Country: United States. Reputation: known attacker.

• 2026-03-09

  Observed 16 times. Targeted ports: 9444. Country: United States. Reputation: known attacker.

• 2026-03-06

  Observed 3 times. Targeted ports: 88. Country: United States. Reputation: known attacker.

• 2026-03-05

  Observed 19 times. Targeted ports: 80. Country: United States. Reputation: known attacker.

• 2026-03-04

  Observed 3 times. Targeted ports: 808. Country: United States. Reputation: known attacker.

• 2026-03-03

  Observed 15 times. Targeted ports: 2300. Country: United States.

• 2026-03-02

  Observed 17 times. Targeted ports: 1250. Country: United States.

Actions