RST Threat feed. IOC: 167.172.141.231

2021-04-27T00:00:00
ID RST:2D8CB86D-CE1B-30EE-9423-0096A3E4480E
Type rst
Reporter RST Threat Feed
Modified 2021-04-25T00:00:00

Description

Found 167[.]172.141.231 in RST Threat Feed with score 10. First seen: 2021-04-25T03:00:00, Last seen: 2021-04-25T03:00:00. IOC tags: malware. We found that the IOC is used by: cobalt_strike. ASN 14061: (First IP 167.172.0.0, Last IP 167.172.255.255). ASN Name "DIGITALOCEANASN" and Organisation "DigitalOcean LLC". This IP is a part of "digitalocean" address pools. ASN hosts 3444507 domains. GEO IP information: City "North Bergen", Country "United States". IOC could be a False Positive (Cloud provider IP). https://rstcloud.net/