IOC Radar
IPMediumSignal 56/100

119.29.29.29

Location
SingaporeSingapore
Guangzhou, Guangdong
ASN
AS132203
Shenzhen Tencent Computer Systems Company Limited
First Seen
Jul 2, 2023
Last Seen
Apr 18, 2026
Jul 2
First Seen
1077d ago
Apr 18
Last Seen
57d ago
7
Reports
source reports
56%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
56%
Signal Score
56 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

52 techniques

Network Information

CountrySGSingapore
RegionGuangzhou, Guangdong
ASNAS132203
OrganizationShenzhen Tencent Computer Systems Company Limited

Feed Intelligence Summary

7 reports56% confidence
7
Source reports
56%
Confidence score
Category tags
acceptactive scanactive scanningaptapt-q-95asiaaslraspackbackdoorbazaarbotnetbotnet activitybotnet iocsbotnet miraibrute forcebrute_forcec2calls processchinacloud infrastructurecommand & controlcommand and controlcommunication protocolconnected devicescredential accesscredential stuffingcredential_accesscredentialscrypt32data exfiltrationdata store exposureddosddos attacksdefault credentials attackdenial of servicedevice managementdistributed attacksdns attackexploitationexploitation activityftp brute forcegs038gs118gs325hackinghttp brute forcehttp scanneridentity & access exploitationindicatorindustrial iotingress tool transferinitial_accessinjection activityinternet of thingsiociocsiot analyticsiot applicationsiot botnetiot devicesiot platformsiot securityiot/ics attacklibrarylinuxlinux systemsmalicious softwaremalwaremirai botnetmirai internetmitre attackmkdirmwdbnetworknetwork attacksnetwork discoverynetwork infonetwork probingnetwork protocolnetwork scanningnetwork securitynetwork traffic analysisnextnone rticonoverview zenboxpe fileperforms dnsprocess injectionprocesses extraprotocol exploitationrapperbotratreconnaissanceremote accessremote servicesresearchedrokrat malware activityscannerscanning activitysingaporesmart devicessmtp brute forcessdeepssh attackstrongsyn scansystem information gatheringt1014t1021t1021.001t1021.006t1027t1036t1040t1046t1053t1055t1059t1059.004t1070t1071t1071.001t1071.004t1076t1078t1078.001t1082t1095t1105t1110t1110.002t1129t1133t1189t1190t1203t1204t1485t1486t1496t1497t1497.001t1498t1499.001t1499.002t1499.003t1539t1542t1548t1555.003t1563t1564t1565t1566t1574t1595t1595.001t1595.002t1595.003tcp protocoltcp scantelnet threatthingsthreat actortor nodetrojan malwaretsunamiudp scanverdictvulnerability scanweb application attackweb exploitationweb trafficwindows sandboxwinmmxor ddosxport

Activity Timeline

1 total obs
Apr 18Apr 18

Threat Activity Heatmap

· Peak: 2026-04-18
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
56
SIGNAL
Signal Score
56%
Confidence
7
Reports
First seenJul 2, 2023
Last seenApr 18, 2026
GeolocationSG
CountrySingapore
LocationGuangzhou, Guangdong
ASNAS132203
OrgShenzhen Tencent Computer Systems Company Limited
Coords1.2900, 103.8503

VirusTotal

Not checked

WHOIS

description
CC=SG ASN=AS132203 tencent building kejizhongyi avenue
raw
inetnum: 119.29.29.0 - 119.29.29.255 netname: ACEVILLEPTELTD-SG descr: 16 COLLYER QUAY, # 18-29, INCOME AT RAFFLES, SINGAPORE country: SG admin-c: APA7-AP tech-c: APA7-AP abuse-c: AC1601-AP status: ALLOCATED PORTABLE mnt-by: MAINT-CNNIC-AP mnt-routes: MAINT-TENCENT-NET-AP-CN mnt-irt: IRT-CNNIC-CN last-modified: 2021-10-22T09:04:06Z source: APNIC irt: IRT-CNNIC-CN address: Beijing, China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: IP50-AP tech-c: IP50-AP auth: # Filtered remarks: Please note that CNNIC is not an ISP and is not remarks: empowered to investigate complaints of network abuse. remarks: Please contact the tech-c or admin-c of the network. mnt-by: MAINT-CNNIC-AP last-modified: 2021-06-16T01:39:57Z source: APNIC role: ABUSE CNNICCN country: ZZ address: Beijing, China phone: +000000000 e-mail: [email protected] admin-c: IP50-AP tech-c: IP50-AP nic-hdl: AC1601-AP remarks: Generated from irt object IRT-CNNIC-CN abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2024-07-30T11:55:46Z source: APNIC role: ACEVILLE PTELTD administrator address: 16 COLLYER QUAY, #18-29, INCOME AT RAFFLES, SINGAPORE country: SG phone: +8613923479936 fax-no: +8613923479936 e-mail: [email protected] admin-c: APA7-AP tech-c: APA7-AP nic-hdl: APA7-AP mnt-by: MAINT-ACEVILLEPTELTD-SG last-modified: 2023-03-17T12:36:41Z source: APNIC route: 119.29.0.0/16 descr: Shenzhen Tencent Computer Systems Company Limited country: CN origin: AS45090 notify: [email protected] mnt-by: MAINT-CNNIC-AP last-modified: 2014-07-31T05:24:01Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 1 month ago
Appeared in 7 threat reports