IPMediumSignal 26/100
123.169.91.9
Location
ChinaJinan, SD
ASN
AS4134
Chinanet SD
First Seen
May 30, 2025
Last Seen
Mar 31, 2026
May 30
First Seen
382d ago
Mar 31
Last Seen
77d ago
5
Reports
source reports
26%
Confidence
medium
1/91
VirusTotal
detections
Found in 5 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
26%
Signal Score
26 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionJinan, SD
ASNAS4134
OrganizationChinanet SD
Feed Intelligence Summary
5 reports26% confidence
5
Source reports
26%
Confidence score
Category tags
abuseactive scanactive scanningasiabad reputationbotnetbotnet activitybrute forcebrute force attackchinacommand and controlcredential accesscredential stuffingdata exfiltrationdata store exposureddosdenial of servicedistributed attacksexploit attemptsexploitation activityftp brute forcehttp brute forceidentity & access exploitationindicatorinjection activitylateral movementmalicious softwaremalwaremalware propagationmalware scanningnetworknetwork probingnetwork scanningpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedsmtp brute forcesql injection attemptsssh attackt1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003targeting database
Activity Timeline
Mar 31Mar 31
Threat Activity Heatmap
· Peak: 2026-03-31LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
26
SIGNAL
Signal Score
26%
Confidence
5
Reports
First seenMay 30, 2025
Last seenMar 31, 2026
GeolocationCN
CountryChina
LocationJinan, SD
ASNAS4134
OrgChinanet SD
Coords36.6683, 116.9972
WHOIS
- raw
- inetnum: 123.168.0.0 - 123.171.255.255 netname: CHINANET-SD descr: CHINANET SHANDONG PROVINCE NETWORK descr: Shandong Telecom Corporation descr: No.999,Shunhua road,Jinan,Shandong country: CN admin-c: XR55-AP tech-c: CH93-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-SD mnt-routes: MAINT-CHINANET-SD mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:06:18Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-24 mnt-by: MAINT-CHINANET last-modified: 2025-04-24T03:21:26Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-04-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-24T03:21:54Z source: APNIC person: Chinanet Hostmaster nic-hdl: CH93-AP e-mail: [email protected] address: No.31 ,jingrong street,beijing address: 100032 phone: +86-10-58501724 fax-no: +86-10-58501724 country: CN mnt-by: MAINT-CHINANET last-modified: 2022-02-28T06:53:44Z source: APNIC person: Xin Ruosheng nic-hdl: XR55-AP e-mail: [email protected] address: No.999, road Shunhua, Jinan, Shandong province,China phone: +86-531-83190000 fax-no: +86-531-83190000 country: CN mnt-by: MAINT-CHINANET-SD last-modified: 2019-12-20T07:11:49Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 2 months ago
Appeared in 5 threat reports