Back to IOCs

IOC Details

Indicator

3.132.26.232

Tag

honeypot

Source

First seen

2026-02-24 23:35:40

Last seen

2026-06-27 08:33:39

Hits

376

Comment history

2026-06-27
Observed 9 times. Targeted ports: 2083. Country: United States. Reputation: known attacker.
2026-06-26
Observed 19 times. Targeted ports: 37215. Country: United States. Reputation: known attacker.
2026-06-25
Observed 40 times. Targeted ports: 25, 1723. Country: United States. Reputation: known attacker.
2026-06-24
Observed 18 times. Targeted ports: 24001. Country: United States. Reputation: known attacker.
2026-06-23
Observed 37 times. Targeted ports: 9200. Country: United States. Reputation: known attacker.
2026-06-22
Observed 36 times. Targeted ports: 5431. Country: United States. Reputation: known attacker.
2026-06-21
Observed 31 times. Targeted ports: 10080. Country: United States. Reputation: known attacker.
2026-06-20
Observed 27 times. Targeted ports: 60000. Country: United States. Reputation: known attacker.
2026-06-19
Observed 45 times. Targeted ports: 80. Country: United States. Reputation: known attacker.
2026-06-18
Observed 42 times. Targeted ports: 8999. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with invalid timestamp.
2026-06-17
Observed 47 times. Targeted ports: 443. Country: United States. Reputation: known attacker.
2026-06-16
Observed 9 times. Targeted ports: 1723. Country: United States.
2026-05-24
Observed 38 times. Targeted ports: 4841, 8443. Country: United States.
2026-05-23
Observed 126 times. Targeted ports: 4000, 10080, 22227. Country: United States. Reputation: known attacker.
2026-05-22
Observed 51 times. Targeted ports: 3389. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA TLS invalid record type.
2026-05-21
Observed 35 times. Targeted ports: 9020. Country: United States. Reputation: known attacker.
2026-05-20
Observed 86 times. Targeted ports: 1962, 8008, 37215. Country: United States. Reputation: known attacker.
2026-05-19
Observed 70 times. Targeted ports: 8079, 37810. Country: United States.
2026-05-18
Observed 27 times. Targeted ports: 80. Country: United States. Reputation: known attacker.
2026-05-17
Observed 9 times. Targeted ports: 27017. Country: United States. Reputation: known attacker.
2026-05-16
Observed 34 times. Targeted ports: 8079. Country: United States. Reputation: known attacker.
2026-05-15
Observed 36 times. Targeted ports: 8099. Country: United States.
2026-05-14
Observed 180 times. Targeted ports: 25, 1962, 4000, 9800. Country: United States. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Detect protocol only one direction.
2026-05-13
Observed 35 times. Targeted ports: 1962. Country: United States. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with invalid timestamp.
2026-05-12
Observed 174 times. Targeted ports: 1521, 3000, 8005, 8082. Country: United States.
2026-05-11
Observed 16 times. Targeted ports: 51080. Country: United States. Reputation: known attacker.
2026-05-10
Observed 18 times. Targeted ports: 8008. Country: United States. Reputation: known attacker.
2026-05-09
Observed 136 times. Targeted ports: 25, 80, 9800. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Detect protocol only one direction, SURICATA TLS invalid record type.
2026-05-08
Observed 39 times. Targeted ports: 9200. Country: United States. Reputation: known attacker.
2026-05-07
Observed 67 times. Targeted ports: 4000, 8079, 22227. Country: United States. Reputation: known attacker.
2026-05-06
Observed 35 times. Targeted ports: 9020. Country: United States.
2026-05-05
Observed 1 times. Targeted ports: 37810. Country: United States. Reputation: known attacker.
2026-05-04
Observed 103 times. Targeted ports: 8585, 10443, 18190. Country: United States. Reputation: known attacker.
2026-05-03
Observed 62 times. Targeted ports: 3389, 31337. Country: United States. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA TLS invalid record type.
2026-05-02
Observed 33 times. Targeted ports: 9200. Country: United States.
2026-05-01
Observed 46 times. Targeted ports: 389. Country: United States. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA TLS invalid record type.
2026-04-30
Observed 49 times. Targeted ports: 80. Country: United States.
2026-04-29
Observed 19 times. Targeted ports: 2079. Country: United States.
2026-04-28
Observed 35 times. Targeted ports: 8020. Country: United States.
2026-04-27
Observed 44 times. Targeted ports: 30005. Country: United States. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
2026-04-23
Observed 51 times. Targeted ports: 9443. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-04-22
Observed 41 times. Targeted ports: 9043. Country: United States.
2026-04-21
Observed 53 times. Targeted ports: 22227. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-04-10
Observed 126 times. Targeted ports: 8050, 8585, 51005. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-27
Observed 114 times. Targeted ports: 1443, 5431, 27017. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-26
Observed 104 times. Targeted ports: 8079, 60000. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-25
Observed 98 times. Targeted ports: 1962, 10001, 24001. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-24
Observed 58 times. Targeted ports: 1900, 8099. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-23
Observed 53 times. Targeted ports: 9002. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-22
Observed 98 times. Targeted ports: 1723, 22227. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-21
Observed 69 times. Targeted ports: 1723, 37810. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-20
Observed 113 times. Targeted ports: 8008, 8085, 55555. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-19
Observed 45 times. Targeted ports: 8069. Country: United States.
2026-03-17
Observed 51 times. Targeted ports: 1080. Country: United States. Reputation: known attacker.
2026-03-16
Observed 19 times. Targeted ports: 8079. Country: United States.
2026-03-15
Observed 9 times. Targeted ports: 10001. Country: United States. Reputation: known attacker.
2026-03-14
Observed 98 times. Targeted ports: 21, 2086, 8002. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-13
Observed 92 times. Targeted ports: 5002, 37215. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-12
Observed 302 times. Targeted ports: 3000, 3377, 4443, 8003, 9001, 12321, 49152. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-11
Observed 114 times. Targeted ports: 8087, 10001, 60000. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-10
Observed 87 times. Targeted ports: 5901, 8729. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-08
Observed 55 times. Targeted ports: 10002. Country: United States. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-07
Observed 54 times. Targeted ports: 9800, 30005. Country: United States. Reputation: known attacker.
2026-03-06
Observed 94 times. Targeted ports: 4000, 9200. Country: United States. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.
2026-03-04
Observed 19 times. Targeted ports: 60000. Country: United States. Reputation: known attacker.
2026-03-03
Observed 114 times. Targeted ports: 21, 9020, 9800. Country: United States. Alert categories: Misc activity.
2026-03-02
Observed 9 times. Targeted ports: 10001. Country: United States.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID	Indicator	Type	Tag	Source	Last seen	Actions
314971	66.228.49.103	IP	malware	11	2026-06-27 08:51:43	IOC Record
381030	54.176.124.253	IP	honeypot	4	2026-06-27 08:35:32	IOC Record
338740	185.85.242.201	IP	honeypot	4	2026-06-27 08:35:32	IOC Record
63290	64.62.197.86	IP	honeypot	4	2026-06-27 08:35:32	IOC Record
39831	141.98.83.48	IP	honeypot	4	2026-06-27 08:35:32	IOC Record