IOC Radar
IPMediumSignal 68/100

111.92.242.44

Location
Hong KongHong Kong
Mong Kok, Kwai Tsing
ASN
AS401696
Vapeline Technology(hk)., limited
First Seen
Sep 10, 2024
Last Seen
May 10, 2026
Sep 10
First Seen
641d ago
May 10
Last Seen
34d ago
15
Reports
source reports
68%
Confidence
medium
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
68%
Signal Score
68 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

32 techniques

Network Information

CountryHKHong Kong
RegionMong Kok, Kwai Tsing
ASNAS401696
OrganizationVapeline Technology(hk)., limited

Feed Intelligence Summary

15 reports68% confidence
15
Source reports
68%
Confidence score
Category tags
abuseactive scanadversary simulation toolaptasiaauto-generated securitybad reputationbeaconbeaconing activitybotnetbotnet activitybrute forcec2c2 communicationc2 frameworkc2 servercambodiacobaltcobalt strikecobaltstrikecommand & controlcommand and controlcompromised hostcompromised hostscredential harvestingcredential stuffingdata exfiltrationdata store exposuredata theftddosdistributed attacksexploitation activityfeedfeed malwarefeeds agentfeeds malicioushkhong kongidentity & access exploitationindicatorinfoinformation technologyinjection activityintrusion detectioniociocsit infrastructurelateral movementlateral movement techniquesmalicious softwaremalwaremalware distributionmanualnetworknetwork securitynetwork traffic analysispayload deploymentpayload generationpenetration testing toolphishingphishing attackpost-exploitationpost-exploitation activitiesprocess injectionransomwareresearchedscannerself-signedsocial engineeringsoftware developmentspamstrongt1003t1016t1018t1027t1040t1041t1047t1055t1059t1059.001t1071t1071.001t1078t1083t1090t1090.001t1105t1190t1210t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1567t1569.002t1573t1573.001threat actorthreat intelligencetor nodevulnerability scan

Activity Timeline

1 total obs
May 10May 10

Threat Activity Heatmap

· Peak: 2026-05-10
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
68
SIGNAL
Signal Score
68%
Confidence
15
Reports
First seenSep 10, 2024
Last seenMay 10, 2026
GeolocationHK
CountryHong Kong
LocationMong Kok, Kwai Tsing
ASNAS401696
OrgVapeline Technology(hk)., limited
Coords13.0000, 105.0000

VirusTotal

Not checked

WHOIS

description
Imported indicator
raw
inetnum: 111.92.240.0 - 111.92.243.255 netname: WTSGL-HK descr: WEST TECHNOLOGY SERVICES GROUP LIMITED country: HK org: ORG-WTSG1-AP admin-c: WTSG1-AP tech-c: WTSG1-AP status: ALLOCATED PORTABLE abuse-c: AW1010-AP remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-WTSGL-HK mnt-routes: MAINT-WTSGL-HK mnt-irt: IRT-WTSGL-HK last-modified: 2024-12-10T06:30:01Z source: APNIC irt: IRT-WTSGL-HK address: Kwai Tak Industrial Centre, 15-33 Kwai Tak St, Kwai Chung, hongkong e-mail: [email protected] abuse-mailbox: [email protected] admin-c: WTSG1-AP tech-c: WTSG1-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-11 mnt-by: MAINT-WTSGL-HK last-modified: 2025-09-04T07:42:35Z source: APNIC organisation: ORG-WTSG1-AP org-name: WEST TECHNOLOGY SERVICES GROUP LIMITED org-type: LIR country: HK address: Kwai Tak Industrial Centre, 15-33 Kwai Tak St, Kwai Chung phone: +852-95865275 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:18:07Z source: APNIC role: ABUSE WTSGLHK country: ZZ address: Kwai Tak Industrial Centre, 15-33 Kwai Tak St, Kwai Chung, hongkong phone: +000000000 e-mail: [email protected] admin-c: WTSG1-AP tech-c: WTSG1-AP nic-hdl: AW1010-AP remarks: Generated from irt object IRT-WTSGL-HK remarks: [email protected] was validated on 2025-04-11 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-11T16:31:26Z source: APNIC role: WEST TECHNOLOGY SERVICES GROUP LIMITED administrat address: Kwai Tak Industrial Centre, 15-33 Kwai Tak St, Kwai Chung, hongkong country: HK phone: +852-95865275 e-mail: [email protected] admin-c: WTSG1-AP tech-c: WTSG1-AP nic-hdl: WTSG1-AP mnt-by: MAINT-WTSGL-HK last-modified: 2020-03-10T06:37:56Z source: APNIC
references
https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt, https://threatfox.abuse.ch/export/csv/recent/, https://www.shodan.io/search?query=product%3A%22Cobalt+Strike+Beacon%22, https://precisionsec.com/threat-intelligence-feeds/cobaltstrike/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 1 month ago
Appeared in 15 threat reports