RST Threat feed. IOC: 52.73.70.149

2021-04-14T00:00:00
ID RST:019210E5-89BF-3314-8206-E506E190DB60
Type rst
Reporter RST Threat Feed
Modified 2021-02-04T00:00:00

Description

Found 52[.]73.70.149 in RST Threat Feed with score 10. First seen: 2021-02-04T03:00:00, Last seen: 2021-04-13T03:00:00. IOC tags: c2. We found that the IOC is used by: dridex. ASN 14618: (First IP 52.70.0.0, Last IP 52.73.255.255). ASN Name "AMAZONAES" and Organisation "Amazoncom Inc". This IP is a part of "amazon_cloud_ec2" address pools. ASN hosts 11871272 domains. GEO IP information: City "Ashburn", Country "United States". IOC could be a False Positive (Cloud provider IP). https://rstcloud.net/