IPMediumSignal 39/100
125.228.151.43
Location
Taiwan, Province of ChinaSanchong District, New Taipei City
ASN
AS3462
Chunghwa Telecom Co. Ltd.
First Seen
Jan 13, 2023
Last Seen
Apr 7, 2026
Found in 20 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
39%
Signal Score
39 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryTaiwan, Province of China
Taiwan, Province of ChinaRegionSanchong District, New Taipei City
ASNAS3462
OrganizationChunghwa Telecom Co. Ltd.
Feed Intelligence Summary
20 reports39% confidence
20
Source reports
39%
Confidence score
Category tags
abuseaccess controlaccount compromiseactive scanactive scanningaerospace & defenseasiaattackauto-generated securityautomotive manufacturingbad reputationblacklisted ipbotnetbotnet activitybrute forcebrute force attackcisco devicecivil servicescommand and controlcommunication protocolcommunication securitycompromised credentialsconpotconpot honeypotcowriecowrie honeypotcredential accesscredential harvestingcredential stuffingctacyber securitydata exfiltrationdata store exposureddosddos attackddos attacksdecoy systemdefensedefense contractingdefense logisticsdefense systemsdefense technologydevice managementdionaeadionaea honeypotdistributed attackselectronics manufacturingemailenterprise networkingexploit kit activityexploitation activityftp brute forceftp scangithubgovernment technologyhoneytrap honeypothttp scannerics securityidentity & access exploitationindicatorindustrial automationindustrial control systemsindustrial iotindustrial productioninfrastructure acquisitionreconnaissanceinjection activityinternet of thingsintrusion detectioniociot botnetiot securityiot/ics attackkfsensor honeypotlamplamp attacklateral movementloginlogin brute forcemailoney honeypotmalicious activitymalicious login attemptsmalicious payloadmalicious softwaremalwaremalware behaviourmalware capturemanualmanufacturing technologymilitary operationsmirai botnetnational securitynetworknetwork attacksnetwork infrastructurenetwork intrusionnetwork intrusion attemptsnetwork probingnetwork reconnaissancenetwork scanningnetwork securitynextraynorth americapassword attacksphishingphishing attackphishing trapprocess injectionprocess manufacturingprotocol exploitationpublic administrationpublic infrastructurepublic policypythonquality controlransomwarereconnaissanceregulatory agenciesremote accessremote servicesresearchedresource hijackingscanscannerscanning activitysecurity operationssecurity policysentrypeer botnetsftpsftp attacksip brute forcesip scanslugsocial engineeringsocradar honeypotsshssh attackssh monitoringssh scansupply chain attacksupply chain managementsurface webt1018t1021t1021.001t1021.004t1040t1041t1046t1053t1055t1059t1071.001t1076t1078t1078.001t1083t1110t1110.001t1110.002t1110.003t1110.004t1187t1190t1486t1496t1499.001t1499.002t1499.003t1555t1563t1565t1566.001t1566.002t1566.003t1566.004t1587.001t1590.001t1595t1595.001t1595.002t1595.003taiwantaiwan, province of chinatannertcp protocoltcp/23tcp/80telecommunicationstelnet threatthreat actorthreat detectionthreat intelligencethreat preventiontor nodetsectwunauthorized access attemptunited statesus sourcevalid accountsvoipvoip attackweb traffic
Activity Timeline
Apr 7Apr 7
Threat Activity Heatmap
· Peak: 2026-04-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
39
SIGNAL
Signal Score
39%
Confidence
20
Reports
First seenJan 13, 2023
Last seenApr 7, 2026
GeolocationTW
CountryTaiwan, Province of China
LocationSanchong District, New Taipei City
ASNAS3462
OrgChunghwa Telecom Co. Ltd.
Coords23.5000, 121.0000
VirusTotal
Not checked
WHOIS
- description
- 2025-03-09T12:17:51.724Z Honeypot : Dionaea : Source: 125.228.151.43 : Port: 81 Connection: {'protocol': 'httpd', 'transport': 'tcp', 'type': 'accept'}
- raw
- inetnum: 125.224.0.0 - 125.231.255.255 netname: HINET-NET descr: Data Communication Business Group, descr: Chunghwa Telecom Co.,Ltd. descr: No.21, Sec.1, Xinyi Rd., Taipei City descr: 10048, Taiwan country: TW admin-c: HN27-AP tech-c: HN27-AP abuse-c: AT939-AP status: ALLOCATED PORTABLE mnt-by: MAINT-TW-TWNIC mnt-irt: IRT-TWNIC-AP last-modified: 2021-11-04T00:49:03Z source: APNIC irt: IRT-TWNIC-AP address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan e-mail: [email protected] abuse-mailbox: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP auth: # Filtered remarks: Please note that TWNIC is not an ISP and is not empowered remarks: to investigate complaints of network abuse. remarks: [email protected] was validated on 2025-05-23 mnt-by: MAINT-TW-TWNIC last-modified: 2025-05-23T00:01:36Z source: APNIC role: ABUSE TWNICAP country: ZZ address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan phone: +000000000 e-mail: [email protected] admin-c: TWA2-AP tech-c: TWA2-AP nic-hdl: AT939-AP remarks: Generated from irt object IRT-TWNIC-AP remarks: [email protected] was validated on 2025-05-23 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-05-23T00:02:10Z source: APNIC person: HINET Network-Adm address: CHTD, Chunghwa Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd., address: Taipei Taiwan 100 country: TW phone: +886 2 2322 3495 phone: +886 2 2322 3442 phone: +886 2 2344 3007 fax-no: +886 2 2344 2513 fax-no: +886 2 2395 5671 e-mail: [email protected] nic-hdl: HN27-AP remarks: same as TWNIC nic-handle HN184-TW mnt-by: MAINT-TW-TWNIC last-modified: 2011-08-22T06:04:01Z source: APNIC inetnum: 125.228.0.0 - 125.228.255.255 netname: HINET-NET descr: Chunghwa Telecom Co.,Ltd. descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C. descr: Taipei Taiwan country: TW admin-c: HN184-TW tech-c: HN184-TW mnt-by: MAINT-TW-TWNIC changed: [email protected] 20051020 status: ASSIGNED NON-PORTABLE remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC person: HINET Network-Adm address: Changhua Telecom Co., Ltd. address: No. 21, Sec. 21, Hsin-Yi Rd. address: Taipei Taiwan country: TW phone: +886-2-2322-3495 fax-no: +886-2-2344-2513 e-mail: [email protected] nic-hdl: HN184-TW changed: [email protected] 20130307 remarks: This information has been partially mirrored by APNIC from remarks: TWNIC. To obtain more specific information, please use the remarks: TWNIC whois server at whois.twnic.net. source: TWNIC
- references
- https://purplesynapz.com/, https://blog.edie.io/2020/04/30/diy-ip-threat-feed/, https://github.com/tankmek/threatfeed, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, https://github.com/telekom-security/tpotce
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen 2 months ago
Appeared in 20 threat reports