IOC Radar
IPMediumSignal 59/100

103.124.95.161

Location
VietnamVietnam
Đống Đa, Hanoi
ASN
AS131353
NHANHOA
First Seen
Jan 10, 2025
Last Seen
Jun 12, 2026
Jan 10
First Seen
525d ago
Jun 12
Last Seen
7d ago
23
Reports
source reports
59%
Confidence
medium
Found in 23 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
59%
Signal Score
59 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

52 techniques

Network Information

CountryVNVietnam
RegionĐống Đa, Hanoi
ASNAS131353
OrganizationNHANHOA

Feed Intelligence Summary

23 reports59% confidence
23
Source reports
59%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningantispamapacheapache attackeraptasiaattackattacker-ipbad reputationbad web botblocklist_allblog spambotnetbotnet activitybrute forcebrute force attackbrute-forcebruteforcec2c2 communicationcertcommand & controlcommand and controlcommunication protocolcompromised hostcompromised systemcredential accesscredential harvestingcredential stuffingcredential-accessdata exfiltrationdata store exposuredatabase securityddosddos attackdenial of servicedistributed attackseuropeeurope/asiaexploitexploitation activityexploited hostfinlandfinland based activityftp brute forcehackinghttp brute forcehttp scanneridentity & access exploitationindicatorinfected hostinformation technologyinfrastructure acquisitionreconnaissanceingress tool transferinjection activityinjection attacksintrusion detectionit infrastructurelog4jlogin-brute-forcemalicious activitymalicious linksmalicious payloadmalicious softwaremalwarenetworknetwork attacksnetwork beaconingnetwork intrusionnetwork scanningnetwork securitynetwork traffic analysisopenctipassword attacksphishphishingphishing attackpolcertprocess injectionransomwareratreconnaissanceremote accessremote servicesresearchedscannerscripting languagesecurity policyself-signedsocial engineeringsoftware developmentspamsshssh attackt1005t1016t1018t1021t1021.001t1040t1041t1046t1047t1053t1055t1057t1059t1059.003t1059.007t1068t1071t1071.001t1076t1078t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1185t1190t1199t1203t1204t1204.001t1486t1490t1496t1497t1499.001t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003tcp protocoltcp scanthreat actorthreat intelligencethreat preventiontor nodetrojan malwareturkeyudp scanvietnamvnvoidtrapvulnerabilityvulnerability scanweb app attackweb applicationweb application attackweb application exploitationweb developmentweb exploitationweb securityweb spamweb traffic

Activity Timeline

1 total obs
Jun 12Jun 12

Threat Activity Heatmap

· Peak: 2026-06-12
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
59
SIGNAL
Signal Score
59%
Confidence
23
Reports
First seenJan 10, 2025
Last seenJun 12, 2026
GeolocationVN
CountryVietnam
LocationĐống Đa, Hanoi
ASNAS131353
OrgNHANHOA
Coords21.0244, 105.8415

VirusTotal

Not checked

WHOIS

description
Score: 100/100 | Detector: threat_feed | Label: reported_abuse | Tags: reported_abuse, abuseipdb

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 7 days ago
Appeared in 23 threat reports