IPMediumSignal 71/100
121.202.146.144
Location
Hong KongTseung Kwan O, Kowloon City
ASN
AS17924
Smartone Mobile communications Limited
First Seen
Oct 19, 2024
Last Seen
Jun 7, 2026
Oct 19
First Seen
602d ago
Jun 7
Last Seen
6d ago
32
Reports
source reports
71%
Confidence
medium
10/91
VirusTotal
detections
Found in 32 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
71%
Signal Score
71 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryHong Kong
Hong KongRegionTseung Kwan O, Kowloon City
ASNAS17924
OrganizationSmartone Mobile communications Limited
Feed Intelligence Summary
32 reports71% confidence
32
Source reports
71%
Confidence score
Category tags
abuseaccess controlaccount accessaccount compromiseaccount enumerationaccount takeover attemptactive scanactive scanningadresse ipapacheapache attackeraptasiaattackattacker-ipaustraliaauthenticationauthentication abuseauthentication attackauthentication attemptsauthentication brute forceauthentication-failureauto-generated securityazure adbad reputationbad web botbankingbelgiumbelgium ip addressesblocklist_allbotnetbotnet activitybrute forcebrute force attackbrute force attackerbrute force attemptbrute force attemptsbrute-forcebruteforcec2 communicationc2 servercloud environmentcloud infrastructurecloud infrastructure attackcloud servicescommand & controlcommand and controlcommunication protocolcompromised credentialscompromised hostcompromised hostscowriecowrie honeypotcredential accesscredential attackcredential brute forcecredential compromisecredential harvestingcredential stuffingcredential stuffing attemptscredential-dumpingcredential-harvestingcredentialscredit card servicesdata exfiltrationdata store exposuredata theftddosddos attackdecoy systemdenial of servicedictionary attackdigital oceandistributed attacksemailemerging threatsenv-huntingeuropeexploit targetingexploitation activityexploited hostfail2ban alertfinancefinancial servicesfinancial technologyfinlandfnt-secure-sentinelfnt-sentinelfrancefraud ordersfraud voipftpftp brute forcegermanyhackinghkhoneynet connecthong konghttp brute forcehttp scannerhttpsidentity & access exploitationimapimap attackimap brute forceindicatorindicators of compromiseinformation technologyinfrastructure acquisitionreconnaissanceinitial accessinjection activityinternet facing systemsintrusion detectioniocipv4ipv4 addressesipv4 scanningit infrastructurekill-chain exploitationkill-chain reconnaissancelateral movementlogin attacklogin attemptlogin attemptslogin brute forcemalaysiamalicious activitymalicious ip addressesmalicious softwaremalicious-ipmalwaremalware distributionmanualmedium-riskmicrosoft entra idmultiple accounts targetedmultiple usersmultiple users affectednetworknetwork attacksnetwork enumerationnetwork intrusionnetwork probingnetwork protocolnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningnetwork servicesnetwork traffic analysisnginxnorth americaoceaniaopenctipassword attackpassword attackspassword crackingpassword sprayingpayment processingphishingphishing attackpolandpop3 brute forceprivateprocess injectionproject_gifted1protocol exploitationransomwarereconnaissanceremote accessremote servicesresearchedresource hijackingsaslsasl authenticationsasl authentication attackscams & fraudscannerscannersscanning activitysecurity operationssecurity policyself-signedservice scansftp attacksmb brute forcesmtpsmtp attackersmtp brute forcesmtp-attacksocial engineeringsocradar honeypotsoftware developmentspamsshssh attackssh monitoringssh protocolssh-bruteswedent1021t1021.001t1021.002t1021.003t1021.004t1021.005t1040t1041t1046t1055t1059t1059.001t1059.003t1059.004t1068t1071t1071.001t1076t1078t1078.004t1105t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1203t1486t1496t1499.001t1499.002t1499.003t1555t1555.003t1563t1565t1566.001t1566.002t1566.003t1566.004t1573t1573.001t1583.006t1587.001t1588t1588.004t1589t1589.002t1590t1590.001t1590.005t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp brute forcetcp protocoltcp protocol attacktcp scantelnet threatthreat actorthreat intelligencethreat preventiontor nodeturkeyudp scanunauthorized accessunauthorized access attemptunauthorized login attemptsunited kingdomunited statesunknown threat groupvalid accountsvoidtrapvulnerability scanwazuhwealth managementweb app attackweb application attackweb exploitationweb spamweb trafficworker_strike
Activity Timeline
Jun 7Jun 7
Threat Activity Heatmap
· Peak: 2026-06-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
71
SIGNAL
Signal Score
71%
Confidence
32
Reports
First seenOct 19, 2024
Last seenJun 7, 2026
GeolocationHK
CountryHong Kong
LocationTseung Kwan O, Kowloon City
ASNAS17924
OrgSmartone Mobile communications Limited
Coords22.3144, 114.2200
WHOIS
- description
- Score: 100/100 | Detector: threat_feed | Label: reported_abuse | Tags: reported_abuse, abuseipdb
- raw
- inetnum: 121.202.0.0 - 121.203.255.255 netname: SMARTONE-MB descr: SmarTone Mobile Communications Ltd descr: Hong Kong country: HK org: ORG-SMCL2-AP admin-c: JY50-AP tech-c: EC9-AP abuse-c: AS2092-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-HK-SMARTM-AP mnt-routes: MAINT-HK-SMARTM-AP mnt-irt: IRT-SMARTMOBILE-HK last-modified: 2020-05-16T06:32:37Z source: APNIC irt: IRT-SMARTMOBILE-HK address: 31/F, Millennium City 2, address: 378 Kwun Tong Road, Kwun Tong, address: Kowloon, Hong Kong e-mail: [email protected] abuse-mailbox: [email protected] admin-c: JY50-AP tech-c: EN211-AP auth: # Filtered remarks: [email protected] was validated on 2025-02-25 mnt-by: MAINT-HK-SMARTM-AP last-modified: 2025-02-25T13:50:21Z source: APNIC organisation: ORG-SMCL2-AP org-name: Smartone Mobile communications Limited org-type: LIR country: HK address: 31 / F , Millennium City 2 address: 378 Kwun Tong Road, Kwun Tong, Kowloon phone: +852-31282828 fax-no: +852-25976556 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:14:50Z source: APNIC role: ABUSE SMARTMOBILEHK country: ZZ address: 31/F, Millennium City 2, address: 378 Kwun Tong Road, Kwun Tong, address: Kowloon, Hong Kong phone: +000000000 e-mail: [email protected] admin-c: JY50-AP tech-c: EN211-AP nic-hdl: AS2092-AP remarks: Generated from irt object IRT-SMARTMOBILE-HK remarks: [email protected] was validated on 2025-02-25 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-02-25T13:50:44Z source: APNIC person: Eric Chan nic-hdl: EC9-AP e-mail: [email protected] address: 31/F,Millennium City 2, address: 378 Kwun Tong Road, Kwun Tong, address: Kowloon, Hong Kong phone: +852-31282298 fax-no: +852-21683089 country: HK mnt-by: MAINT-HK-EC9-AP last-modified: 2009-12-09T10:21:18Z source: APNIC person: Johnny Yeung nic-hdl: JY50-AP e-mail: [email protected] address: 31/F, Millennium City 2, address: 378 Kwun Tong Road, Kwun Tong, address: Kowloon, Hong Kong phone: +852-28802618 fax-no: +852-21683089 country: HK mnt-by: MAINT-HK-JY50-AP last-modified: 2009-12-09T08:10:00Z source: APNIC route: 121.202.128.0/17 origin: AS17924 descr: Smartone Mobile communications Limited 31 / F , Millennium City 2 378 Kwun Tong Road, Kwun Tong, Kowloon mnt-by: MAINT-HK-SMARTM-AP last-modified: 2022-12-01T04:50:35Z source: APNIC
- references
- https://github.com/telekom-security/tpotce, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 6 days ago
Appeared in 32 threat reports