IOC Radar
IPMediumSignal 35/100

123.192.96.98

Location
Taiwan, Province of ChinaTaiwan, Province of China
Sanchong District, Taipei
ASN
AS38841
KBRO
First Seen
Jan 13, 2023
Last Seen
Apr 1, 2026
Jan 13
First Seen
1245d ago
Apr 1
Last Seen
71d ago
19
Reports
source reports
35%
Confidence
medium
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
35%
Signal Score
35 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

31 techniques

Network Information

CountryTWTaiwan, Province of China
RegionSanchong District, Taipei
ASNAS38841
OrganizationKBRO

Feed Intelligence Summary

19 reports35% confidence
19
Source reports
35%
Confidence score
Category tags
abuseaccess controlactive scanactive scanningaerospace & defenseasiaattackauto-generated securityautomotive manufacturingbad reputationbotnetbotnet activitybrute forcebrute force attackbrute force attemptcisco devicecivil servicescommand and controlcommunication protocolcowrie honeypotcredential accesscredential harvestingcredential stuffingctacyber securitydata exfiltrationdata store exposureddosddos attacksdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydevice managementdionaea honeypotdistributed attackselectronics manufacturingenterprise networkingexploitation activitygovernment technologyhoneytrap honeypotidentity & access exploitationindicatorindustrial automationindustrial iotindustrial productioninfrastructure acquisitionreconnaissanceinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attacklampmalicious activitymalicious ipmalicious network activitymalicious softwaremalwaremalware behaviourmalware capturemanualmanufacturing technologymilitary operationsmiraimirai botnetnational securitynetworknetwork attacksnetwork infrastructurenetwork intrusionnetwork probingnetwork scanningnetwork securitynetwork service scanningnextraypassword attacksphishingphishing attackprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policyquality controlreconnaissanceregulatory agenciesresearchedscanscannersecurity operationssecurity policyservice scansftp attacksocial engineeringssh attackssh monitoringsupply chain attacksupply chain managementsurface webt1021.002t1040t1041t1046t1055t1056.001t1059.001t1071.001t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1486t1496t1499.001t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatcptcp protocoltcp/23telecommunicationstelnettelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetw

Activity Timeline

1 total obs
Apr 1Apr 1

Threat Activity Heatmap

· Peak: 2026-04-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
35
SIGNAL
Signal Score
35%
Confidence
19
Reports
First seenJan 13, 2023
Last seenApr 1, 2026
GeolocationTW
CountryTaiwan, Province of China
LocationSanchong District, Taipei
ASNAS38841
OrgKBRO
Coords25.0504, 121.5324

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 23 Telnet. Same IP should not appear more than once in 96 hours in our lists S3#.
raw
inetnum: 123.192.0.0 - 123.195.255.255 netname: KBRO-NET descr: kbro CO. Ltd. descr: 9F., No.260, Sec. 2, Bade Rd., Songshan Dist., descr: Taipei City 105, Taiwan (R.O.C.) country: TW admin-c: KA290-AP tech-c: KA290-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ remarks: This object can only be updated by APNIC hostmasters. remarks: To update this object, please contact APNIC remarks: hostmasters and include your organisation's account remarks: name in the subject line. remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ mnt-by: MAINT-TW-TWNIC mnt-lower: MAINT-TW-TWNIC mnt-routes: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-09-15T07:58:53Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] was validated on 2025-05-23 mnt-by: MAINT-TW-TWNIC last-modified: 2025-05-23T00:01:36Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] was validated on 2025-05-23 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-23T00:02:10Z source: APNIC person: Kbro adm address: 9F., No.260, Sec. 2, Bade Rd., Songshan Dist., address: Taipei City 105, Taiwan (R.O.C.) country: TW phone: +886-2-6611-1688 ext. 15126 e-mail: [email protected] nic-hdl: KA290-AP mnt-by: MAINT-TW-TWNIC fax-no: +886-2-6611-2115 last-modified: 2021-09-15T07:50:53Z source: APNIC inetnum: 123.192.0.0 - 123.192.127.255 netname: KBRO-NET descr: kbro CO. Ltd. descr: 9F., No.260, Sec. 2, Bade Rd., Songshan Dist., Taipei City 105, Taiwan (R.O.C.) descr: Taipei Taiwan country: TW admin-c: VL99-TW tech-c: VL102-TW mnt-by: MAINT-TW-TWNIC changed: [email protected] 20061229 status: ASSIGNED NON-PORTABLE remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: copyright copyright address: kbro CO. Ltd. address: 9F., No.260, Sec. 2, Bade Rd., Songshan Dist., Taipei City 105, Taiwan (R.O.C.) address: Taipei City Taiwan country: TW phone: +886-2-6611-1688 ext. 15126 fax-no: +886-2-6611-2115 e-mail: [email protected] nic-hdl: VL102-TW changed: [email protected] 20210915 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: adm adm address: kbro CO. Ltd. address: 8F., No.260, Sec. 2, Bade Rd., Songshan Dist., Taipei City 105, Taiwan (R.O.C.) address: Taipei Taiwan country: TW phone: +886-2-6611-1688 ext. 15126 fax-no: +886-2-6611-2115 e-mail: [email protected] nic-hdl: VL99-TW changed: [email protected] 20170518 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 3 years ago · Last seen 2 months ago
Appeared in 19 threat reports