IOC Radar
IPMediumSignal 50/100

103.149.98.247

Location
VietnamVietnam
Hanoi, Hanoi
ASN
AS135905
VDC
First Seen
Apr 16, 2025
Last Seen
Jun 5, 2026
Apr 16
First Seen
416d ago
Jun 5
Last Seen
yesterday
9
Reports
source reports
50%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
50%
Signal Score
50 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

65 techniques

Network Information

CountryVNVietnam
RegionHanoi, Hanoi
ASNAS135905
OrganizationVDC

Feed Intelligence Summary

9 reports50% confidence
9
Source reports
50%
Confidence score
Category tags
active scanningaerospace & defenseapplication layer protocolaptapt attack campaignapt groupapt43asiaattackattack threatsbotnetbrute forcebrute force attackc2 servercab filecab file exploitationcivil servicescode executioncode injectioncommand and controlcommand executioncommunication protocolcredential accesscredential harvestingcredential stuffingcybercyber espionagecyber pressdata accessdata copyingdata exfiltrationdata theftdata transferdefensedefense contractingdefense logisticsdefense systemsdefense technologydenial of servicedesktopdistributed attacksdropbox apidropbox api abusefigureftpgenian edrgoogle drivegoogle drive abusegovernment technologyhttp scannerincome taxincome tax scamindicatorinformation stealerinfrastructure acquisitionreconnaissancekimsukykimsuky groupkimuskykoreakorea, republic oflaterlateral movementlnk filelnk file attacklnk file exploitationlnk filesmalicious activitymalicious documentmalicious powershell activitymalicious softwaremalwaremalware distributionmanualmilitary operationsmultiple protocolsnational securitynetworknetwork attacksnetwork intrusionnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningoverview ahnlabpassword attackpassword attacksphishingphishing attackpriorprocess injectionprojectprotocol exploitationpublic administrationpublic infrastructurepublic policyquasarratratrat malwareratsreconnaissanceregulatory agenciesremote accessremote access trojanresearchedrokratscripting attackssecurity newssecurity operationsself-signedsocial engineeringsoftware exploitationsouth koreasouth korea targetingspear-phishingspearphishingssh attackstrongt1005t1027t1027.001t1027.002t1027.003t1030t1036t1040t1041t1046t1047t1053.005t1055t1056.001t1059t1059.001t1059.003t1059.005t1059.007t1071t1071.001t1078t1078.001t1081t1082t1083t1086t1102t1102.002t1105t1110t1110.001t1110.002t1110.003t1110.004t1113t1132t1140t1189t1190t1203t1204t1204.002t1486t1496t1499.002t1499.003t1543.003t1547t1547.001t1555t1555.003t1565t1566t1566.001t1566.002t1566.003t1569t1569.002t1587.001t1590.001t1595t1595.001t1595.002t1595.003tactictargettcp protocoltelnet threatthreatthreat actorthreat intelligencetoolsvietnamvirtual assetvirtual asset theftweb trafficxenorat

Activity Timeline

1 total obs
Jun 5Jun 5

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
50
SIGNAL
Signal Score
50%
Confidence
9
Reports
First seenApr 16, 2025
Last seenJun 5, 2026
GeolocationVN
CountryVietnam
LocationHanoi, Hanoi
ASNAS135905
OrgVDC
Coords16.0020, 105.9984

VirusTotal

Not checked

WHOIS

description
CC=VN ASN=ASNone
raw
inetnum: 103.149.98.0 - 103.149.99.255 netname: VDC-VN descr: IDC VietNam Data Joint Stock Company descr: 6th Floor, Viet A Tower, No. 9 Duy Tan, Dich Vong Hau, Cau Giay, Hanoi admin-c: NHT21-AP tech-c: NAT13-AP country: VN mnt-by: MAINT-VN-VNNIC mnt-lower: MAINT-VN-VNNIC mnt-irt: IRT-VNNIC-AP status: ALLOCATED PORTABLE last-modified: 2020-03-11T08:37:39Z source: APNIC irt: IRT-VNNIC-AP address: Ha Noi, VietNam phone: +84-24-35564944 fax-no: +84-24-37821462 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NTTT1-AP tech-c: NTTT1-AP auth: # Filtered mnt-by: MAINT-VN-VNNIC last-modified: 2017-11-08T09:40:06Z source: APNIC person: Nguyen Anh Tuan address: VDC-VN country: VN phone: +84-2432242403 e-mail: [email protected] nic-hdl: NAT13-AP mnt-by: MAINT-VN-VNNIC last-modified: 2020-03-11T08:29:04Z source: APNIC person: Nguyen Huu Toan address: VDC-VN country: VN phone: +84-2432242403 e-mail: [email protected] nic-hdl: NHT21-AP mnt-by: MAINT-VN-VNNIC last-modified: 2020-03-11T08:25:20Z source: APNIC
references
https://asec.ahnlab.com/en/87945, https://asec.ahnlab.com/en/87945/, https://x.com/byrne_emmy12099/status/1912268814873686354

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 day ago
Appeared in 9 threat reports