IPMediumSignal 32/100
1.34.59.156
Location
Taiwan, Province of ChinaTaipei, NWT
ASN
AS3462
Chunghwa Telecom Co. Ltd.
First Seen
Jan 20, 2025
Last Seen
Apr 5, 2026
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
32%
Signal Score
32 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryTaiwan, Province of China
Taiwan, Province of ChinaRegionTaipei, NWT
ASNAS3462
OrganizationChunghwa Telecom Co. Ltd.
Feed Intelligence Summary
15 reports32% confidence
15
Source reports
32%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningasiaattackbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptcommand and controlcommunication protocolcowrie honeypotcredential accesscredential stuffingctadata exfiltrationdata store exposureddosddos attacksdecoy systemdistributed attacksexploitation activityhoneytrap honeypotidentity & access exploitationindicatorinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attacklamploginmalicious activitymalicious network activitymalicious softwaremalwaremirai botnetnetworknetwork attacksnetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningpassword attacksprocess injectionprotocol exploitationreconnaissanceresearchedscanscannersecurity policyservice scansftp attackssh attackssh monitoringt1021.002t1040t1041t1046t1055t1056.001t1059.001t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatcp protocoltelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetw
Activity Timeline
Apr 5Apr 5
Threat Activity Heatmap
· Peak: 2026-04-05LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), an IPv4 address with a score of 32.38 and not whitelisted, signifies a potential threat and warrants immediate attention due to its likely involvement in malicious activities. The presence of this IP address in multiple reputable threat intelligence feeds, including those flagging brute-force attempts and suspicious network scanning, strongly points towards its active role in reconnaissance and potential attack preparation. If this IOC interacts with organizat…
Threat ScoreLow Risk
32
SIGNAL
Signal Score
32%
Confidence
15
Reports
First seenJan 20, 2025
Last seenApr 5, 2026
GeolocationTW
CountryTaiwan, Province of China
LocationTaipei, NWT
ASNAS3462
OrgChunghwa Telecom Co. Ltd.
Coords24.9389, 121.5422
VirusTotal
Not checked
WHOIS
- description
- Scans hitting the server at TCP port 23 Telnet. Same IP should not appear more than once in 96 hours in our lists S3#.
- raw
- inetnum: 1.34.0.0 - 1.35.255.255 netname: HINET-NET descr: Data Communication Business Group, descr: Chunghwa Telecom Co.,Ltd. descr: No.21, Sec.1, Xinyi Rd., Taipei City descr: 10048, Taiwan country: TW admin-c: HN27-AP tech-c: HN27-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE mnt-by: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-11-04T00:50:00Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] was validated on 2025-05-23 mnt-by: MAINT-TW-TWNIC last-modified: 2025-09-03T04:09:06Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] was validated on 2025-05-23 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-23T00:02:10Z source: APNIC person: HINET Network-Adm address: CHTD, Chunghwa Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN27-AP remarks: (hid:HN184-TW) mnt-by: MAINT-TW-TWNIC last-modified: 2025-08-28T07:34:45Z source: APNIC inetnum: 1.34.0.0 - 1.34.255.255 netname: HINET-NET descr: Chunghwa Telecom Co.,Ltd. descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C. descr: Taipei Taiwan country: TW admin-c: HN184-TW tech-c: HN184-TW mnt-by: MAINT-TW-TWNIC changed: [email protected] 20100506 status: ASSIGNED NON-PORTABLE remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: HINET Network-Adm address: Changhua Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd. address: Taipei Taiwan country: TW phone: +886-2-2322-3495 fax-no: +886-2-2344-2513 e-mail: [email protected] nic-hdl: HN184-TW changed: [email protected] 20130307 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC
- references
- https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 15 threat reports