IOC Radar
IPMediumSignal 53/100

106.12.90.118

Location
ChinaChina
Jinrongjie, Beijing
ASN
AS38365
Beijing Baidu Netcom Science and Technology Co., Ltd.
First Seen
Dec 3, 2024
Last Seen
Jun 4, 2026
Dec 3
First Seen
557d ago
Jun 4
Last Seen
9d ago
25
Reports
source reports
53%
Confidence
medium
Found in 25 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
53%
Signal Score
53 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

43 techniques

Network Information

CountryCNChina
RegionJinrongjie, Beijing
ASNAS38365
OrganizationBeijing Baidu Netcom Science and Technology Co., Ltd.

Feed Intelligence Summary

25 reports53% confidence
25
Source reports
53%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaptasiaatif feedattackattacker-ipauto-generated securityautomated attackautomated attacksbad reputationbad web botbanlist feedbinary defenseblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute-forcec2chinacisco devicecisco exploitation attemptcisco exploitation attemptscncode executioncode injectioncommand & controlcommand and controlcommand executioncommunication protocolcowrie datacowrie honeypotcredential accesscredential harvestingcredential stuffingctadata exfiltrationdata store exposuredatabase securityddosdecoy systemdenial of servicedevice managementdistributed attacksenterprise networkingeuropeexploitation activityexploitation attemptsexploited hostfailed login attemptsfinlandfranceftpftp brute forceftp brute-forcegermanyhackinghoneynet connecthttp brute forceidentity & access exploitationimapimap attackindicatorinitial accessinjection activityinjection attacksintrusion detectionjapanlateral movementlogin attemptmalicious activitymalicious ip addressesmalwaremalware distributionnetworknetwork enumerationnetwork infrastructurenetwork intrusionnetwork probingnetwork scanningnetwork securitynorth americaobjectpassword attackpassword attacksphishingphishing attackpolandprotocol exploitationransomwarereconnaissanceremote accessremote servicesresearchedresource hijackingscannerscanning activityscripting attackssecurity operationssecurity policysentrypeer activitysentrypeer botnetsftp attacksip brute forcesip scanningsmb brute forcesmtpsmtp attackersmtp brute forcesocial engineeringspamsshssh attackssh monitoringt1021t1021.001t1021.002t1021.003t1021.004t1021.005t1040t1041t1046t1055t1059t1059.001t1059.003t1059.004t1059.007t1068t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1203t1486t1496t1499.001t1499.002t1499.003t1563t1566.001t1566.002t1566.003t1573.001t1590t1592t1595t1595.001t1595.002t1595.003tcp scantelecommunicationstelnet threatthreat actorthreat intelligencethreat intelligence feedthreat preventiontor nodeudp scanunauthorized access attemptunited statesvoidtrapvoipvoip attackweb app attackweb application attackweb attackweb exploitationweb spam

Activity Timeline

1 total obs
Jun 4Jun 4

Threat Activity Heatmap

· Peak: 2026-06-04
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
53
SIGNAL
Signal Score
53%
Confidence
25
Reports
First seenDec 3, 2024
Last seenJun 4, 2026
GeolocationCN
CountryChina
LocationJinrongjie, Beijing
ASNAS38365
OrgBeijing Baidu Netcom Science and Technology Co., Ltd.
Coords39.9116, 116.3510

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 9 days ago
Appeared in 25 threat reports