IOC Radar
IPMediumSignal 40/100

122.114.37.27

Location
ChinaChina
Zhengzhou, Henan
ASN
AS4837
Zhengzhou GIANT Computer Network Technology Co., Ltd
First Seen
Jul 4, 2023
Last Seen
Jun 19, 2026
Jul 4
First Seen
1085d ago
Jun 19
Last Seen
5d ago
4
Reports
source reports
40%
Confidence
medium
Found in 4 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
40%
Signal Score
40 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

43 techniques

Network Information

CountryCNChina
RegionZhengzhou, Henan
ASNAS4837
OrganizationZhengzhou GIANT Computer Network Technology Co., Ltd

Feed Intelligence Summary

4 reports40% confidence
4
Source reports
40%
Confidence score
Category tags
abuseactive scanactive scanningasiaaustraliabad reputationbad web botbotnetbotnet activitybrute forcebrute force attackbrute force attacksbrute force attemptsbrute-forcechinacncommand injectioncommunication protocolcompromised hostcowrie honeypotcowrie interactionscredential accesscredential attackcredential stuffingdata encryptiondata exfiltrationdata store exposuredatabase securityddosdecoy systemdenial of servicedionaea honeypotdionaea interactionsdionaea payloadsdnsdns attackencryptionexploitexploit attemptsexploitation activityexploitation attemptexploited hostexternal threatfattfatt detectionsfatt signaturesftpftp attacksftp brute forcehackinghoneytrap eventshoneytrap honeypothoneytrap interactionshttp attackhttp probinghttp scannericmpidentity & access exploitationindicatorinitial accessinjection activityinjection attacksinternet-facingioclateral movementmailoney eventsmailoney honeypotmailoney interactionsmalicious activitymalicious softwaremalicious trafficmalwaremalware analysismalware behaviourmalware capturemalware delivery attemptmalware detectionmalware distributionmanualnetworknetwork attacksnetwork intrusionnetwork intrusion attemptsnetwork intrusion detectionnetwork protocolnetwork reconnaissancenetwork scanningnetwork securityoceaniap0fp0f signaturespassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationransomwarereconnaissanceremote accessremote access attackremote servicesresearchedresource hijackingscannerscanning activitysensor-taggedsentrypeer botnetsentrypeer eventssentrypeer interactionsserver exploitationsmtpsmtp attacksmtp probingsmtp scanningsql injectionssh attackssh attacksssh monitoringsuricata alertst1005t1016t1018t1020t1021t1021.001t1021.002t1040t1046t1053t1055t1059t1059.003t1068t1071t1071.001t1076t1077t1078t1083t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1189t1190t1203t1486t1496t1499.001t1499.002t1499.003t1505.002t1555t1563t1565t1595t1595.001t1595.002t1595.003tannertanner eventstanner interactionstargeting databasetcp protocoltelecommunicationstelnet threatthreat actorthreat detectionthreat intelligencetor nodetpotvnc protocolvoipvoip attackweb app attackweb application attackweb exploitationweb exploitsweb traffic

Activity Timeline

1 total obs
Jun 19Jun 19

Threat Activity Heatmap

· Peak: 2026-06-19
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
40
SIGNAL
Signal Score
40%
Confidence
4
Reports
First seenJul 4, 2023
Last seenJun 19, 2026
GeolocationCN
CountryChina
LocationZhengzhou, Henan
ASNAS4837
OrgZhengzhou GIANT Computer Network Technology Co., Ltd
Coords34.7208, 113.7940

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=suricata; threshold?1; private IPs excluded.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 5 days ago
Appeared in 4 threat reports