IPMediumSignal 48/100
141.164.52.232
Location
South KoreaSeoul, Seoul
ASN
AS20473
KOR VULTR
First Seen
Jan 8, 2022
Last Seen
Feb 19, 2026
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
48%
Signal Score
48 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountrySouth Korea
South KoreaRegionSeoul, Seoul
ASNAS20473
OrganizationKOR VULTR
Feed Intelligence Summary
3 reports48% confidence
3
Source reports
48%
Confidence score
Category tags
botnetcommand and controlcredential harvestingdata exfiltrationdistributed attacksindicatorinfrastructure acquisitionreconnaissancemalicious softwaremalwaremanualnetworkphishing attackprocess injectionresearchedsocial engineeringt1055t1071.001t1486t1496t1499.002t1499.003t1565t1566.001t1566.002t1566.003t1587.001t1590.001
Activity Timeline
Feb 19Feb 19
Threat Activity Heatmap
· Peak: 2026-02-19LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
This indicator of compromise (IOC), specifically an IPv4 address, is explicitly marked as benign within our threat intelligence. Its whitelist status is confirmed as 'Yes,' and it holds an exceptionally low threat score of 0.0, indicating it poses virtually no risk to the organization. While this IP address may appear in some general threat intelligence feeds, such as Maltrail, this occurrence should be considered in the context of its official whitelisting. There is no corroborating evidence to…
Threat ScoreMedium Risk
48
SIGNAL
Signal Score
48%
Confidence
3
Reports
First seenJan 8, 2022
Last seenFeb 19, 2026
GeolocationKR
CountrySouth Korea
LocationSeoul, Seoul
ASNAS20473
OrgKOR VULTR
Coords37.5646, 126.9223
VirusTotal
Not checked
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 years ago · Last seen 4 months ago
Appeared in 3 threat reports