IOC Radar
IPMediumSignal 57/100

1.92.215.74

Location
ChinaChina
Beijing, Beijing
ASN
AS55990
Huawei Public Cloud Service
First Seen
Nov 11, 2025
Last Seen
May 28, 2026
Nov 11
First Seen
215d ago
May 28
Last Seen
17d ago
6
Reports
source reports
57%
Confidence
medium
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
57%
Signal Score
57 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

12 techniques

Network Information

CountryCNChina
RegionBeijing, Beijing
ASNAS55990
OrganizationHuawei Public Cloud Service

Feed Intelligence Summary

6 reports57% confidence
6
Source reports
57%
Confidence score
Category tags
active scanactive scanningafricaargentinaasiaattackaustraliaauto-blockedbad reputationbad web botbangladeshbelgiumblog spambotnet activitybrazilbrute forcebrute-forcebruteforcecanadachinacndata exfiltrationdata store exposuredatabase securityddosddos attackdenial of serviceencryptioneuropeeurope/asiaexploitation activityexploited hostfinlandfrancegermanyhackinghong kongindiainjection activityinjection attacksirelandjapankenyakorea, republic ofkyrgyzstanlithuaniamalicious activitymalwaremexicomorocconetherlandsnetworknew zealandnorth americanorwayoceaniapolandproxyreconnaissanceresearchedromaniarussiascannerserbiasingaporesouth africasouth americaspamsshssl-enrichmentswedent1059.003t1071.001t1105t1190t1203t1486t1499.001t1499.002t1573.002t1595.001t1595.002t1595.003taiwanthreat actorthreat-inteltor nodeukraineunited kingdomunited statesvenezuela, bolivarian republic ofweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 28May 28

Threat Activity Heatmap

· Peak: 2026-05-28
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This report details a high-risk Indicator of Compromise (IOC) — the IPv4 address `1.92.215.74` — which has been extensively flagged across multiple threat intelligence feeds, indicating its significant involvement in malicious activities. With a score of 56.76, this IOC warrants immediate attention, as its presence within our environment could signify ongoing or imminent threats such as data breaches, denial-of-service attacks, or unauthorized system access. The associated attack patterns reveal…

Threat ScoreMedium Risk
57
SIGNAL
Signal Score
57%
Confidence
6
Reports
First seenNov 11, 2025
Last seenMay 28, 2026
GeolocationCN
CountryChina
LocationBeijing, Beijing
ASNAS55990
OrgHuawei Public Cloud Service
Coords39.9042, 116.4073

VirusTotal

Not checked

WHOIS

description
AbuseIPDB 22% | CN | Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)
raw
inetnum: 1.92.0.0 - 1.92.255.255 netname: HWCSNET descr: Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co) descr: No.2018 Xuegang Road,Bantian street,Longgang District, descr: Shenzhen,Guangdong Province, 518129 P.R.China country: CN admin-c: LL3172-AP tech-c: GX1759-AP abuse-c: AC1601-AP status: ALLOCATED PORTABLE mnt-by: MAINT-CNNIC-AP mnt-lower: MAINT-CNNIC-AP mnt-routes: MAINT-CNNIC-AP mnt-irt: IRT-CNNIC-CN last-modified: 2022-04-18T05:51:08Z source: APNIC irt: IRT-CNNIC-CN address: Beijing, China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: IP50-AP tech-c: IP50-AP auth: # Filtered remarks: Please note that CNNIC is not an ISP and is not remarks: empowered to investigate complaints of network abuse. remarks: Please contact the tech-c or admin-c of the network. remarks: [email protected] is invalid mnt-by: MAINT-CNNIC-AP last-modified: 2025-11-17T23:08:37Z source: APNIC role: ABUSE CNNICCN country: ZZ address: Beijing, China phone: +000000000 e-mail: [email protected] admin-c: IP50-AP tech-c: IP50-AP nic-hdl: AC1601-AP remarks: Generated from irt object IRT-CNNIC-CN remarks: [email protected] is invalid abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-09-19T17:20:32Z source: APNIC person: Gui xiaowei address: HUAWEI CLOUD Data Center, Jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guizhou Province country: CN phone: +86-18566251984 e-mail: [email protected] nic-hdl: GX1759-AP mnt-by: MAINT-CNNIC-AP last-modified: 2022-04-18T05:32:41Z source: APNIC person: Liu Liqun address: HUAWEI CLOUD Data Center, Jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guizhou Province country: CN phone: +86-13360099887 e-mail: [email protected] nic-hdl: LL3172-AP mnt-by: MAINT-CNNIC-AP last-modified: 2022-04-18T05:33:15Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 7 months ago · Last seen 17 days ago
Appeared in 6 threat reports