IPMediumSignal 44/100
101.68.6.118
Location
ChinaJiaxing, Zhejiang
ASN
AS4837
China Unicom Zhejiang Province Network
First Seen
Oct 31, 2025
Last Seen
May 20, 2026
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
44%
Signal Score
44 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionJiaxing, Zhejiang
ASNAS4837
OrganizationChina Unicom Zhejiang Province Network
Feed Intelligence Summary
6 reports44% confidence
6
Source reports
44%
Confidence score
Category tags
active scanactive scanningaptasiachinacnexploitation activityexploited hosthackingindicatoriot securityiot targetednetworkreconnaissanceresearchedscannert1595.001t1595.002t1595.003threat actorthreat-intelligencetor nodetpot
Activity Timeline
May 20May 20
Threat Activity Heatmap
· Peak: 2026-05-20LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
44
SIGNAL
Signal Score
44%
Confidence
6
Reports
First seenOct 31, 2025
Last seenMay 20, 2026
GeolocationCN
CountryChina
LocationJiaxing, Zhejiang
ASNAS4837
OrgChina Unicom Zhejiang Province Network
Coords30.2936, 120.1616
VirusTotal
Not checked
WHOIS
- description
- Score: 50/100. Labels: abuseipdb:minimal, abuseipdb:reported, cowrie, firehol:unlisted, gti:suspicious, sector:energy. 101.68.6.118 classified as attacker with unclear intent (medium confidence). Origin: enriched. Listed on: AbuseIPDB (minimal, reported).
- raw
- inetnum: 101.64.0.0 - 101.71.255.255 netname: UNICOM-ZJ descr: UNICOM ZheJiang Province Network descr: China Unicom descr: No.21, Jin-Rong Street descr: Beijing 100033 country: CN admin-c: JQ16-AP tech-c: JQ16-AP abuse-c: AC1718-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CNCGROUP mnt-routes: MAINT-CNCGROUP-RR mnt-irt: IRT-CU-CN last-modified: 2023-10-21T03:33:23Z source: APNIC irt: IRT-CU-CN address: No.21,Financial Street address: Beijing,100033 address: P.R.China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP auth: # Filtered remarks: [email protected] was validated on 2025-10-17 mnt-by: MAINT-CNCGROUP last-modified: 2025-11-18T00:26:20Z source: APNIC role: ABUSE CUCN country: ZZ address: No.21,Financial Street address: Beijing,100033 address: P.R.China phone: +000000000 e-mail: [email protected] admin-c: CH1302-AP tech-c: CH1302-AP nic-hdl: AC1718-AP remarks: Generated from irt object IRT-CU-CN remarks: [email protected] was validated on 2025-10-17 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-10-17T02:26:56Z source: APNIC person: Jianhuaq Qian nic-hdl: JQ16-AP e-mail: [email protected] address: No 1336,BinAn Road,Hangzhou, Zhejiang,China phone: +86-571-28868063 fax-no: +86-571-28868069 country: CN mnt-by: MAINT-CNCGROUP-ZJ last-modified: 2013-07-09T07:43:26Z source: APNIC route: 101.64.0.0/13 descr: China Unicom Zhejiang Province Network country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR last-modified: 2010-12-31T02:58:02Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 7 months ago · Last seen 24 days ago
Appeared in 6 threat reports