IOC Radar
IPMediumSignal 73/100

124.31.104.87

Location
ChinaChina
Beijing, Xizang
ASN
AS4134
Chinanet XZ
First Seen
Sep 21, 2023
Last Seen
Feb 23, 2026
Sep 21
First Seen
1005d ago
Feb 23
Last Seen
119d ago
9
Reports
source reports
73%
Confidence
medium
Found in 9 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
73%
Signal Score
73 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

27 techniques

Network Information

CountryCNChina
RegionBeijing, Xizang
ASNAS4134
OrganizationChinanet XZ

Feed Intelligence Summary

9 reports73% confidence
9
Source reports
73%
Confidence score
Category tags
abuseactive scanningasiaattackauthentication attemptsbotnetbrute forcechinacommand and controlcommunication protocolcowrie activitycowrie honeypotcowrie ssh attackscredential accesscredential stuffingdata exfiltrationdecoy systemdionaea activitydionaea honeypotdionaea malware collectiondistributed attacksexploited hosthackingindicatormalicious activitymalicious sip activitymalicious softwaremalicious trafficmalwaremalware behaviourmalware capturenetworknetwork probingnetwork scanningnetwork securityprocess injectionreconnaissanceresearchedresource hijackingscannersentrypeer botnetsftp access attemptssftp attacksip brute forcesip scanningssh attackssh monitoringt1021t1040t1041t1055t1059t1059.004t1071.001t1078t1078.001t1078.002t1078.003t1078.004t1110t1110.001t1110.002t1110.003t1190t1486t1496t1499.001t1499.002t1499.003t1565t1595t1595.001t1595.002t1595.003telecommunicationsthreat actorthreat intelligencevoipvoip attack

Activity Timeline

1 total obs
Feb 23Feb 23

Threat Activity Heatmap

· Peak: 2026-02-23
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
73
SIGNAL
Signal Score
73%
Confidence
9
Reports
First seenSep 21, 2023
Last seenFeb 23, 2026
GeolocationCN
CountryChina
LocationBeijing, Xizang
ASNAS4134
OrgChinanet XZ
Coords28.5561, 92.5567

VirusTotal

Not checked

WHOIS

description
Unknown source type: h0neytr4p
references
https://github.com/telekom-security/tpotce

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 3 months ago
Appeared in 9 threat reports