IPMediumSignal 21/100
101.132.164.172
Location
ChinaShanghai, Shanghai
ASN
AS37963
Aliyun Computing Co., LTD
First Seen
Dec 18, 2024
Last Seen
Dec 19, 2024
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
21%
Signal Score
21 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionShanghai, Shanghai
ASNAS37963
OrganizationAliyun Computing Co., LTD
Feed Intelligence Summary
3 reports21% confidence
3
Source reports
21%
Confidence score
Category tags
alibaba cloudamazonamazon web servicesapplied researchbeyondbotnetc2cloud computingcloud migrationcloud securitycloud servicescloud storagecobalt strikecommand and controldata exfiltrationddos attacksdevelopment labsdistributed attacksgoogle cloudgoogle cloud platformindicatorinnovation managementinternet of thingsiot botnetiot/ics attackkrustyloadermalicious softwaremalwaremalware hostedmetasploitmicrosoft azuremirai botnetmulti-cloud managementnetworknjratprocess injectionproduct developmentr&d strategyresearch & developmentresearch methodologyresearchedscientific researchsliver c2t1036t1055t1059.001t1071t1071.001t1102t1105t1189t1486t1496t1499.002t1499.003t1530t1565t1566t1569.002t1608technology researchveritiveriti research
Activity Timeline
Dec 19Dec 19
Threat Activity Heatmap
LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreLow Risk
21
SIGNAL
Signal Score
21%
Confidence
3
Reports
First seenDec 18, 2024
Last seenDec 19, 2024
GeolocationCN
CountryChina
LocationShanghai, Shanghai
ASNAS37963
OrgAliyun Computing Co., LTD
Coords31.2222, 121.4581
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 1 year ago
Appeared in 3 threat reports