IOC Radar
IPHighVerifiedSignal 33/100

103.138.189.74

Location
SingaporeSingapore
Singapore, North West
ASN
AS204800
WHG Hosting Services Ltd
First Seen
Dec 18, 2025
Last Seen
Feb 12, 2026
Dec 18
First Seen
190d ago
Feb 12
Last Seen
134d ago
4
Reports
source reports
33%
Confidence
high
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
33%
Signal Score
33 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Network Information

CountrySGSingapore
RegionSingapore, North West
ASNAS204800
OrganizationWHG Hosting Services Ltd

Feed Intelligence Summary

4 reports33% confidence
4
Source reports
33%
Confidence score
Category tags
active scanactive scanningasiabad web botbotnet activitybrute forcebrute force attackcredential accesscredential harvestingcredential stuffingddosddos attackdenial of serviceexploitation activityidentity & access exploitationindicatornetworkpassword attacksphishingphishing attackreconnaissanceresearchedscannersgsingaporesocial engineeringt1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1566.001t1566.002t1566.003t1595.001t1595.002t1595.003web application attackweb exploitation

Activity Timeline

1 total obs
Feb 12Feb 12

Threat Activity Heatmap

· Peak: 2026-02-12
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreLow Risk
33
SIGNAL
Signal Score
33%
Confidence
4
Reports
First seenDec 18, 2025
Last seenFeb 12, 2026
Verified IOC
GeolocationSG
CountrySingapore
LocationSingapore, North West
ASNAS204800
OrgWHG Hosting Services Ltd
Coords1.3521, 103.8200

VirusTotal

Not checked

WHOIS

raw
inetnum: 103.138.188.0 - 103.138.189.255 netname: STUB-103-138-188SLASH23 descr: Transferred to the RIPE region on 2024-07-30T12:35:36Z. country: ZZ admin-c: STUB-AP tech-c: STUB-AP abuse-c: AS2444-AP status: ALLOCATED PORTABLE mnt-by: APNIC-STUB mnt-irt: IRT-STUB-AP last-modified: 2024-07-30T02:46:26Z source: APNIC irt: IRT-STUB-AP address: N/A e-mail: [email protected] abuse-mailbox: [email protected] admin-c: STUB-AP tech-c: STUB-AP remarks: IRT for stub records. remarks: We do not operate the referring network and remarks: are unable to investigate complaints of network abuse. remarks: For information about IRT, see www.apnic.net/irt auth: # Filtered mnt-by: APNIC-HM last-modified: 2025-11-18T00:33:17Z source: APNIC role: ABUSE STUBAP country: ZZ address: N/A phone: +000000000 e-mail: [email protected] admin-c: STUB-AP tech-c: STUB-AP nic-hdl: AS2444-AP remarks: Generated from irt object IRT-STUB-AP abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-11-25T00:01:50Z source: APNIC person: STUB PERSON address: N/A country: ZZ phone: +00 0000 0000 e-mail: [email protected] nic-hdl: STUB-AP remarks: No contact information for stub records. mnt-by: APNIC-HM last-modified: 2019-09-23T04:53:33Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 6 months ago · Last seen 4 months ago
Appeared in 4 threat reports