Back to IOCs

IOC Details

IP

Indicator

159.203.38.155

Tag

honeypot

Source

4

First seen

2026-04-27 01:17:02

Last seen

2026-05-20 06:20:55

Hits

3

Comment history

  • 2026-05-20

    Observed 36 times. Targeted ports: 22, 14782. Country: Canada. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port, ET INFO SSH session in progress on Unusual Port.

  • 2026-05-13

    Observed 35 times. Targeted ports: 22, 14782. Country: Canada. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Expected Port, ET INFO SSH session in progress on Unusual Port.

  • 2026-04-27

    Observed 43 times. Targeted ports: 3389, 3390. Country: Canada. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA TLS invalid record type.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID Indicator Type Tag Source Last seen Actions
96234
38.60.215.62
IP honeypot 4 2026-05-20 11:07:42 IOC Record
10089
185.44.67.49
IP honeypot 4 2026-05-20 11:07:42 IOC Record
346012
179.42.198.213
IP honeypot 4 2026-05-20 11:07:41 IOC Record
342677
47.245.82.10
IP honeypot 4 2026-05-20 11:07:41 IOC Record
317453
83.118.88.147
IP honeypot 4 2026-05-20 11:07:41 IOC Record