IOC Radar
IPMediumSignal 67/100

113.87.163.74

Location
ChinaChina
Shenzhen, Guangdong
ASN
AS4134
Chinanet GD
First Seen
Feb 26, 2026
Last Seen
Apr 19, 2026
Feb 26
First Seen
118d ago
Apr 19
Last Seen
66d ago
6
Reports
source reports
67%
Confidence
medium
4/91
VirusTotal
detections
Found in 6 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
67%
Signal Score
67 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

7 techniques

Network Information

CountryCNChina
RegionShenzhen, Guangdong
ASNAS4134
OrganizationChinanet GD

Feed Intelligence Summary

6 reports67% confidence
6
Source reports
67%
Confidence score
Category tags
abuseactive scanactive scanningasiabad reputationbrute forcebrute force attackbrute force attackerchinacredential accesscredential stuffingdigital oceanexploitation activityexploited hosthackingidentity & access exploitationindicatornetworkpassword attacksportscanreconnaissanceresearchedscannerscannersservice scant1110.001t1110.002t1110.003t1110.004t1595.001t1595.002t1595.003

Activity Timeline

1 total obs
Apr 19Apr 19

Threat Activity Heatmap

· Peak: 2026-04-19
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC) signifies a critical threat, warranting immediate attention due to its strong association with widespread malicious activities. The identified IPv4 address, `113.87.163.74`, has been consistently reported across multiple threat intelligence feeds as a source of brute-force attacks and network scanning, indicating an active and persistent threat. If this address is observed communicating with organizational assets, it strongly suggests an ongoing attempt at unau…

Threat ScoreMedium Risk
67
SIGNAL
Signal Score
67%
Confidence
6
Reports
First seenFeb 26, 2026
Last seenApr 19, 2026
GeolocationCN
CountryChina
LocationShenzhen, Guangdong
ASNAS4134
OrgChinanet GD
Coords23.1317, 113.2660

VirusTotal

4/ 91vendors flagged
4% detection rateJun 3, 2026

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean London (UK) honeypot
raw
inetnum: 113.64.0.0 - 113.95.255.255 netname: CHINANET-GD descr: CHINANET Guangdong province network descr: Data Communication Division descr: China Telecom country: CN admin-c: CH93-AP tech-c: IC83-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-GD mnt-routes: MAINT-CHINANET-GD mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:06:03Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-11-13 mnt-by: MAINT-CHINANET last-modified: 2025-11-18T00:26:23Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-11-13 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-11-13T14:15:15Z source: APNIC person: Chinanet Hostmaster nic-hdl: CH93-AP e-mail: [email protected] address: No.31 ,jingrong street,beijing address: 100032 phone: +86-10-58501724 fax-no: +86-10-58501724 country: CN mnt-by: MAINT-CHINANET last-modified: 2022-02-28T06:53:44Z source: APNIC person: IPMASTER CHINANET-GD nic-hdl: IC83-AP e-mail: [email protected] address: NO.18,RO. ZHONGSHANER,YUEXIU DISTRIC,GUANGZHOU phone: +86-20-87189274 fax-no: +86-20-87189274 country: CN mnt-by: MAINT-CHINANET-GD remarks: IPMASTER is not for spam complaint,please send spam complaint to [email protected] abuse-mailbox: [email protected] last-modified: 2021-05-12T09:06:58Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 months ago · Last seen 2 months ago
Appeared in 6 threat reports