IPMediumSignal 31/100
103.1.50.46
Location
Hong KongKwun Tong, Kwun Tong District
ASN
AS142352
CPCNet Hong Kong Ltd.
First Seen
Sep 20, 2024
Last Seen
May 30, 2026
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
31%
Signal Score
31 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryHong Kong
Hong KongRegionKwun Tong, Kwun Tong District
ASNAS142352
OrganizationCPCNet Hong Kong Ltd.
IP Category
⟲
Proxy
Proxy server
Feed Intelligence Summary
9 reports31% confidence
9
Source reports
31%
Confidence score
Category tags
active scanactive scanningasiabad web botbotnetbotnet activitybotnet iocsbotnet miraibotnet propagationbrute forcebrute force attackbrute-forcecommand and controlcommunication protocolconnected devicescredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosddos attackddos attacksdenial of servicedevice managementdistributed attacksexploitationexploitation activityexploited hostgorillabothackinghong kongididentity & access exploitationindonesiaindustrial iotinitial accessinjection activityinternet of thingsiocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attackipv4irclinuxmalicious softwaremalwaremirai botnetmirai internetnetworknetwork attacksnetwork protocolnetwork scanningnetwork securityoutlawpassword attacksphishingphishing attackprocess injectionprotocol exploitationproxyreconnaissanceresearchedscannerscanning activitysmart devicessocial engineeringspamsshssh attackt1021t1021.001t1040t1053.005t1055t1059t1059.004t1071t1071.001t1078t1078.001t1105t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1496t1497t1497.001t1498.001t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003tcp protocoltelnet threatthingsthreat actortor nodetwitterweb app attackweb application attackweb exploitationweb spamxmrig
Activity Timeline
May 30May 30
Threat Activity Heatmap
· Peak: 2026-05-30LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
31
SIGNAL
Signal Score
31%
Confidence
9
Reports
First seenSep 20, 2024
Last seenMay 30, 2026
GeolocationHK
CountryHong Kong
LocationKwun Tong, Kwun Tong District
ASNAS142352
OrgCPCNet Hong Kong Ltd.
Coords22.2578, 114.1657
Proxy
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 103.1.50.0 - 103.1.51.255 netname: IDNIC-PRIMADATA-ID descr: PT Prima Data Transnusantara descr: Corporate / Direct Member IDNIC descr: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL descr: Kab. PASURUAN, JAWA TIMUR admin-c: AH1418-AP tech-c: AH1418-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-PRIMADATA mnt-irt: IRT-PRIMADATA-ID mnt-routes: MAINT-ID-PRIMADATA status: ALLOCATED PORTABLE last-modified: 2022-12-21T07:55:24Z source: APNIC irt: IRT-PRIMADATA-ID address: PT. PRIMA DATA TRANSNUSANTARA address: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL address: Kab. PASURUAN, JAWA TIMUR e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AH1418-AP tech-c: AH1418-AP auth: # Filtered mnt-by: MAINT-ID-PRIMADATA last-modified: 2022-12-20T11:46:06Z source: APNIC person: Agus Hariadi address: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL address: Kab. PASURUAN, JAWA TIMUR country: ID e-mail: [email protected] phone: +6285755790000 nic-hdl: AH1418-AP mnt-by: MAINT-ID-PRIMADATA last-modified: 2022-12-20T11:36:29Z source: APNIC route: 103.1.50.0/24 descr: Route object for 103.1.50.0/24 origin: AS142352 mnt-by: MAINT-ID-TAHTA country: ID last-modified: 2022-12-27T09:56:02Z source: APNIC inetnum: 103.1.50.0 - 103.1.51.255 netname: IDNIC-PRIMADATA-ID descr: PT Prima Data Transnusantara descr: Corporate / Direct Member IDNIC descr: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL descr: Kab. PASURUAN, JAWA TIMUR admin-c: AH1418-AP tech-c: AH1418-AP remarks: Send Spam & Abuse Reports to: [email protected] country: ID mnt-by: MNT-APJII-ID mnt-lower: MAINT-ID-PRIMADATA mnt-irt: IRT-PRIMADATA-ID mnt-routes: MAINT-ID-PRIMADATA status: ALLOCATED PORTABLE last-modified: 2022-12-27T07:41:32Z source: IDNIC irt: IRT-PRIMADATA-ID address: PT. PRIMA DATA TRANSNUSANTARA address: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL address: Kab. PASURUAN, JAWA TIMUR e-mail: [email protected] abuse-mailbox: [email protected] admin-c: AH1418-AP tech-c: AH1418-AP auth: # Filtered mnt-by: MAINT-ID-PRIMADATA last-modified: 2022-12-27T07:41:32Z source: IDNIC person: Agus Hariadi address: Dusun Betas, RT.03 RW.10, KEPULUNGAN, GEMPOL address: Kab. PASURUAN, JAWA TIMUR country: ID e-mail: [email protected] phone: +6285755790000 nic-hdl: AH1418-AP mnt-by: MNT-APJII-ID last-modified: 2022-12-27T07:41:32Z source: IDNIC
- references
- https://1275.ru/ioc/gs-25-19131-mirai-botnet-iocs_11023, https://1275.ru/ioc/gs-25-19129-mirai-botnet-iocs_11015, https://1275.ru/ioc/gs-25-19128-mirai-botnet-iocs_11001, https://1275.ru/ioc/gs-25-19127-mirai-botnet-iocs_10989, https://1275.ru/ioc/gs-25-19125-mirai-botnet-iocs_10956, https://1275.ru/ioc/gs-25-19126-mirai-botnet-iocs_10970, https://1275.ru/ioc/gs-25-18122-mirai-botnet-iocs_10913, https://1275.ru/ioc/gs-25-18120-mirai-botnet-iocs_10854, https://1275.ru/ioc/gs-25-18119-mirai-botnet-iocs_10829, https://1275.ru/ioc/gs-25-18118-mirai-botnet-iocs_10825, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs-2_10696, https://1275.ru/ioc/gs-25-17115-mirai-botnet-iocs_10682, https://1275.ru/ioc/gs-25-17113-mirai-botnet-iocs_10658, https://1275.ru/ioc/gs-25-17112-mirai-botnet-iocs_10640, https://1275.ru/ioc/gs-25-1490-mirai-botnet-iocs_10200
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 15 days ago
Appeared in 9 threat reports