IOC Radar
IPMediumSignal 40/100

103.90.155.32

Location
ChinaChina
Beijing, Beijing
ASN
AS58519
Guangdong Guangshu Network Technology Co., Ltd
First Seen
Dec 20, 2024
Last Seen
Jun 6, 2026
Dec 20
First Seen
540d ago
Jun 6
Last Seen
7d ago
21
Reports
source reports
40%
Confidence
medium
Found in 21 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

48 techniques

Network Information

CountryCNChina
RegionBeijing, Beijing
ASNAS58519
OrganizationGuangdong Guangshu Network Technology Co., Ltd

Feed Intelligence Summary

21 reports40% confidence
21
Source reports
40%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaggressive-detectionapacheapache attackeraptasiaattackaustraliabad reputationblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute-forcebruteforcec2chinacncommand & controlcommand and controlcommunication protocolcompromised systemconnection-resetcredential accesscredential harvestingcredential stuffingdata exfiltrationdata store exposureddosdenial of servicedistributed attacksexploitation activityexploited hostftp brute forcehackinghttp scanninghttps scanningidentity & access exploitationindicatorinfrastructure acquisitionreconnaissanceinjection activityipv4malicious activitymalicious softwaremalwaremanualnetworknetwork attacksnetwork intrusion attemptnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securityoceaniapassword attacksphishingphishing attackpotential intrusion attemptprocess injectionprotocol exploitationprotocol-probingreconnaissanceremote accessremote servicesresearchedscanscannersecurity policysipsip scanningsocial engineeringsshssh attackssh scanningsyn scant1016t1016.001t1016.002t1018t1021t1021.001t1021.002t1021.003t1021.004t1040t1046t1047t1055t1059t1059.001t1059.004t1059.005t1071t1071.001t1071.004t1076t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1565t1566.001t1566.002t1566.003t1587.001t1589t1590.001t1595t1595.001t1595.002t1595.003tcp scanningtelecommunicationstelnet threatthreat actorthreat preventiontor nodeunauthorized access attemptunknown threat actorvoipweb app attackweb application attackweb exploitation

Activity Timeline

1 total obs
Jun 6Jun 6

Threat Activity Heatmap

· Peak: 2026-06-06
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
40
SIGNAL
Signal Score
40%
Confidence
21
Reports
First seenDec 20, 2024
Last seenJun 6, 2026
GeolocationCN
CountryChina
LocationBeijing, Beijing
ASNAS58519
OrgGuangdong Guangshu Network Technology Co., Ltd
Coords39.9042, 116.4070

VirusTotal

Not checked

WHOIS

description
IPV4 hosts detected performing scans on production environment located in Australia.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 7 days ago
Appeared in 21 threat reports