IOC Radar
IPMediumSignal 83/100

106.75.143.34

Location
ChinaChina
Yangpu, Shanghai
ASN
AS136958
Shanghai UCloud Information Technology Company Limited
First Seen
Feb 10, 2025
Last Seen
Jul 14, 2025
Feb 10
First Seen
496d ago
Jul 14
Last Seen
342d ago
13
Reports
source reports
83%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
83%
Signal Score
83 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

38 techniques

Network Information

CountryCNChina
RegionYangpu, Shanghai
ASNAS136958
OrganizationShanghai UCloud Information Technology Company Limited

Feed Intelligence Summary

13 reports83% confidence
13
Source reports
83%
Confidence score
Category tags
abuseaccess controlaccount compromiseactive scanningasiaattackblacklist candidateblacklist ipbotnetbotnet activitybrute forcebrute force attackc2 serverchinacncommand and controlcommunication protocolcommunication securitycompromised hostscredential accesscredential stuffingdata encryptiondata exfiltrationdata theftdcom exploitationddosddos attacksdecoy systemdenial of servicedistributed attackshackinghttp scannerindicatorinformation gatheringinternet of thingsintrusion detectioniociot botnetiot/ics attacklateral movementmalicious activitymalicious scanmalicious softwaremalwaremalware distributionmicrosoft technologiesmirai botnetnetworknetwork attacksnetwork probenetwork probingnetwork protocolnetwork scanningnetwork securitynetwork traffic analysispassword attacksphishingprocess injectionproxy protocolreconnaissancereconnaissance activityremote accessresearchedrpcscanscannerscanning activitysecurity policyspamssh attackt1016t1018t1021.001t1021.002t1040t1046t1047t1055t1059t1068t1071t1071.001t1077t1078t1083t1087t1105t1110.001t1110.002t1110.003t1110.004t1133t1190t1210t1486t1496t1499.001t1499.002t1499.003t1562t1565t1566.001t1573t1592t1595t1595.001t1595.002t1595.003tcp protocolthreat actorthreat intelligencethreat preventionweb traffic

Activity Timeline

1 total obs
Jul 14Jul 14

Threat Activity Heatmap

· Peak: 2025-07-14
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
83
SIGNAL
Signal Score
83%
Confidence
13
Reports
First seenFeb 10, 2025
Last seenJul 14, 2025
GeolocationCN
CountryChina
LocationYangpu, Shanghai
ASNAS136958
OrgShanghai UCloud Information Technology Company Limited
Coords31.2243, 121.4690

VirusTotal

Not checked

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 11 months ago
Appeared in 13 threat reports