IOC Radar
IPHighVerifiedSignal 22/100

14.215.182.161

Location
ChinaChina
Guangzhou, Guangdong
ASN
AS4134
Chinanet GD
First Seen
Nov 8, 2023
Last Seen
May 7, 2026
Nov 8
First Seen
962d ago
May 7
Last Seen
52d ago
5
Reports
source reports
22%
Confidence
high
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
22%
Signal Score
22 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

30 techniques

Network Information

CountryCNChina
RegionGuangzhou, Guangdong
ASNAS4134
OrganizationChinanet GD

Feed Intelligence Summary

5 reports22% confidence
5
Source reports
22%
Confidence score
Category tags
active scanactive scanningasiaautomated attackbotnetbotnet activitybrute forcechinacncommand and controlcredential accesscredential guessingcredential stuffingdata encryptiondata exfiltrationdata store exposuredistributed attacksencryptionexploit public-facing applicationexploitation activityfailed login attemptsftp brute forcehttp brute forceidentity & access exploitationindicatorinjection activitylateral movementmalicious softwaremalwaremysql brute forcenetworknetwork enumerationnetwork intrusionnetwork reconnaissancenetwork scanningnetwork securitynetwork service scanningpotential compromiseprocess injectionprotocol exploitationreconnaissanceremote accessremote servicesresearchedscanning activityservice scansmtp brute forcesoftware discoveryssh attacksystem discoverysystem information discoveryt1018t1021t1021.001t1040t1046t1055t1059t1068t1071.001t1076t1078t1083t1110t1110.002t1136t1187t1190t1486t1496t1499.002t1499.003t1563t1565t1588t1589t1592t1595t1595.001t1595.002t1595.003telnet threatuser discoveryvalid accounts

Activity Timeline

1 total obs
May 7May 7

Threat Activity Heatmap

· Peak: 2026-05-07
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
22
SIGNAL
Signal Score
22%
Confidence
5
Reports
First seenNov 8, 2023
Last seenMay 7, 2026
Verified IOC
GeolocationCN
CountryChina
LocationGuangzhou, Guangdong
ASNAS4134
OrgChinanet GD
Coords23.1181, 113.2539

VirusTotal

Not checked

WHOIS

description
CC=CN ASN=AS4134 chinanet
raw
inetnum: 14.208.0.0 - 14.223.255.255 netname: CHINANET-GD descr: CHINANET Guangdong province network descr: Data Communication Division descr: China Telecom country: CN admin-c: CH93-AP tech-c: IC83-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- notify: [email protected] mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-GD mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:06:06Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-04-24 mnt-by: MAINT-CHINANET last-modified: 2025-04-24T03:21:26Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-04-24 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-04-24T03:21:54Z source: APNIC person: Chinanet Hostmaster nic-hdl: CH93-AP e-mail: [email protected] address: No.31 ,jingrong street,beijing address: 100032 phone: +86-10-58501724 fax-no: +86-10-58501724 country: CN mnt-by: MAINT-CHINANET last-modified: 2022-02-28T06:53:44Z source: APNIC person: IPMASTER CHINANET-GD nic-hdl: IC83-AP e-mail: [email protected] address: NO.18,RO. ZHONGSHANER,YUEXIU DISTRIC,GUANGZHOU phone: +86-20-87189274 fax-no: +86-20-87189274 country: CN mnt-by: MAINT-CHINANET-GD remarks: IPMASTER is not for spam complaint,please send spam complaint to [email protected] abuse-mailbox: [email protected] last-modified: 2021-05-12T09:06:58Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 2 years ago · Last seen 1 month ago
Appeared in 5 threat reports