IPMediumSignal 82/100
14.224.172.200
Location
VietnamHo Chi Minh City, Ho Chi Minh
ASN
AS45899
Vietnam Posts and Telecommunications Group
First Seen
Jun 9, 2023
Last Seen
Jan 23, 2026
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
82%
Signal Score
82 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryVietnam
VietnamRegionHo Chi Minh City, Ho Chi Minh
ASNAS45899
OrganizationVietnam Posts and Telecommunications Group
Feed Intelligence Summary
10 reports82% confidence
10
Source reports
82%
Confidence score
Category tags
abuseaccess controlactive scanningadbhoney honeypotasiaattackbotnetbotnet activity detectedbrute forcebrute force attackbrute force attacksc2c2 communicationcommand and controlcommunication protocolcompromised credentialscompromised hostscowrie honeypotcredential accesscredential harvestingcredential stuffingdata exfiltrationdatabase securityddos preparationdecoy systemdionaea honeypotdionaea malware analysisdistributed attackselasticpot honeypotelasticsearch monitoringexploit attemptsftp brute forceheralding attack patternhttp scanninghttps scanningindicatorinfrastructure acquisitionreconnaissancelateral movementmailoney honeypotmalicious activitymalicious softwaremalwaremalware behaviourmalware capturemalware distributionmanualnetworknetwork enumerationnetwork intrusionnetwork scanningnetwork securitypassword attacksphishingphishing attackphishing trapprocess injectionprotocol exploitationproxy activitypython script activityreconnaissanceresearchedresource hijackingsecurity policysentrypeer botnetsftp attacksmtp scanningsocial engineeringssh attackssh monitoringt1003t1005t1016t1018t1021t1040t1041t1043t1047t1053t1053.005t1055t1056t1059t1071t1071.001t1071.002t1071.004t1078t1083t1090t1090.001t1090.002t1090.003t1110t1110.001t1110.002t1110.003t1110.004t1133t1190t1204.002t1486t1496t1497t1499.001t1499.002t1499.003t1550t1552t1555t1556t1565t1566.001t1566.002t1566.003t1566.004t1573t1587.001t1590.001t1595t1595.001t1595.002t1595.003tannertelecommunicationstelnet threatthreat actorthreat intelligencethreat preventionvietnamvnvoipvoip attack
Activity Timeline
Jan 23Jan 23
Threat Activity Heatmap
· Peak: 2026-01-23LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
82
SIGNAL
Signal Score
82%
Confidence
10
Reports
First seenJun 9, 2023
Last seenJan 23, 2026
GeolocationVN
CountryVietnam
LocationHo Chi Minh City, Ho Chi Minh
ASNAS45899
OrgVietnam Posts and Telecommunications Group
Coords16.0020, 105.9984
VirusTotal
Not checked
WHOIS
- raw
- inetnum: 14.224.0.0 - 14.255.255.255 netname: VNPT-VN descr: Vietnam Posts and Telecommunications Group descr: No 57, Huynh Thuc Khang Street, Lang Ha ward, Dong Da district, Ha Noi City country: VN admin-c: PTH13-AP tech-c: PTH13-AP remarks: for admin contact mail to Nguyen Xuan Cuong -->NXC1-AP remarks: for Tech contact mail to Nguyen Hien Khanh --> KNH1-AP status: ALLOCATED PORTABLE mnt-by: MAINT-VN-VNNIC mnt-lower: MAINT-VN-VNPT mnt-routes: MAINT-VN-VNPT last-modified: 2018-01-25T03:55:18Z mnt-irt: IRT-VNNIC-AP source: APNIC irt: IRT-VNNIC-AP address: Ha Noi, VietNam phone: +84-24-35564944 fax-no: +84-24-37821462 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: NTTT1-AP tech-c: NTTT1-AP auth: # Filtered mnt-by: MAINT-VN-VNNIC last-modified: 2025-09-04T05:18:22Z source: APNIC person: Pham Tien Huy address: VNPT-VN country: VN phone: +84-24-37741604 e-mail: [email protected] nic-hdl: PTH13-AP mnt-by: MAINT-VN-VNPT last-modified: 2017-11-19T07:06:20Z source: APNIC route: 14.224.172.0/24 descr: VNPT origin: AS45899 mnt-by: MAINT-VN-VNPT last-modified: 2022-07-29T16:01:09Z source: APNIC
- references
- https://github.com/telekom-security/tpotce, https://malware-filter.gitlab.io/malware-filter/botnet-filter.txt
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 3 years ago · Last seen 4 months ago
Appeared in 10 threat reports