IPMediumSignal 65/100
124.234.179.54
Location
ChinaJilin, JL
ASN
AS4134
China Telecom
First Seen
Aug 1, 2024
Last Seen
Feb 23, 2026
Aug 1
First Seen
678d ago
Feb 23
Last Seen
108d ago
9
Reports
source reports
65%
Confidence
medium
3/91
VirusTotal
detections
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
65%
Signal Score
65 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionJilin, JL
ASNAS4134
OrganizationChina Telecom
Feed Intelligence Summary
9 reports65% confidence
9
Source reports
65%
Confidence score
Category tags
abuseack scanactive scanningasiaattackbotnetbrute forcebrute force attackchinacommand and controlcommunication technologiescredential accesscredential stuffingdata exfiltrationddosdenial of servicedistributed attacksexploit attemptsfin scanfirewall evasionftp brute forcehttp brute forceindicatorinfrastructure discoverylateral movementmalicious activitymalicious softwaremalwaremalware propagationmalware scanningmobile carriersmobile networksnetworknetwork probingnetwork reconnaissancenetwork scanningnull scanpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedscannerservice enumerationsmtp brute forcesql injection attemptsssh attacksyn scant1016t1018t1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003telecom servicestelecommunicationsthreat actorudp port scanxmas scan
Activity Timeline
Feb 23Feb 23
Threat Activity Heatmap
· Peak: 2026-02-23LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
65
SIGNAL
Signal Score
65%
Confidence
9
Reports
First seenAug 1, 2024
Last seenFeb 23, 2026
GeolocationCN
CountryChina
LocationJilin, JL
ASNAS4134
OrgChina Telecom
Coords43.8800, 125.3247
WHOIS
- raw
- inetnum: 124.234.0.0 - 124.235.255.255 netname: CHINANET-JL descr: CHINANET Jilin province network descr: Jilin Telecom Corporation country: CN admin-c: YL1057-AP tech-c: YL1057-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: address: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin remarks: Jilin Telecom Corporation hostmaster mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-JL mnt-routes: MAINT-CHINANET-JL mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:05:52Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-24 mnt-by: MAINT-CHINANET last-modified: 2025-04-24T03:21:26Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-04-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-24T03:21:54Z source: APNIC person: YI LU nic-hdl: YL1057-AP e-mail: [email protected] address: No.2136,Southeast lake Street,Changchun,130042,Jilin phone: +86-431-85880000 fax-no: +86-431-5881234 country: CN mnt-by: MAINT-CHINANET-JL last-modified: 2019-11-13T03:31:49Z source: APNIC route: 124.234.0.0/15 origin: AS4134 descr: China Telecom Data Network Management Division Network Operation & Maintenance Department No 19 Chaoyangmen North Street Dongcheng District mnt-by: MAINT-CHINANET-JL last-modified: 2018-12-21T03:37:19Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 year ago · Last seen 3 months ago
Appeared in 9 threat reports