IOC Radar
IPMediumSignal 28/100

141.164.62.198

Location
Korea, Republic ofKorea, Republic of
Seoul, Seoul
ASN
AS20473
KOR VULTR
First Seen
Jun 27, 2024
Last Seen
Apr 25, 2026
Jun 27
First Seen
725d ago
Apr 25
Last Seen
59d ago
7
Reports
source reports
28%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
28%
Signal Score
28 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryKRKorea, Republic of
RegionSeoul, Seoul
ASNAS20473
OrganizationKOR VULTR

Feed Intelligence Summary

7 reports28% confidence
7
Source reports
28%
Confidence score
Category tags
abuseactive scanactive scanningasiabad reputationbotnetbotnet activitybrute forcebrute force attackcommand and controlcredential accesscredential stuffingdata exfiltrationdata store exposureddosdenial of servicedistributed attacksexploit attemptsexploitation activityftp brute forcehackinghttp brute forceidentity & access exploitationindicatorinitiator ipinjection activitykorea, republic oflateral movementmalicious softwaremalwaremalware propagationmalware scanningnetworknetwork probingnetwork scanningpassword attacksprocess injectionreconnaissanceremote accessremote servicesresearchedresponder ipscannersmtp brute forcesouth koreasql injection attemptsssh attackt1021t1021.001t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1133t1187t1190t1199t1210t1486t1496t1499.002t1499.003t1563t1565t1588t1595t1595.001t1595.002t1595.003targeting databasetor node

Activity Timeline

1 total obs
Apr 25Apr 25

Threat Activity Heatmap

· Peak: 2026-04-25
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
28
SIGNAL
Signal Score
28%
Confidence
7
Reports
First seenJun 27, 2024
Last seenApr 25, 2026
GeolocationKR
CountryKorea, Republic of
LocationSeoul, Seoul
ASNAS20473
OrgKOR VULTR
Coords37.5665, 126.9780

VirusTotal

Not checked

WHOIS

raw
inetnum: 141.164.48.0 - 141.164.63.255 netname: KOR_VULTR_CUST descr: KOR_VULTR_CUST country: SK admin-c: CLA15-AP tech-c: CLA15-AP abuse-c: AC1765-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-CHOOPALLC-AP mnt-irt: IRT-CHOOPALLC-AP last-modified: 2020-06-18T15:34:17Z source: APNIC irt: IRT-CHOOPALLC-AP address: 100 Matawan Rd, Matawan NJ 07747 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CLA15-AP tech-c: CLA15-AP auth: # Filtered remarks: [email protected] was validated on 2024-11-20 mnt-by: MAINT-CHOOPALLC-AP last-modified: 2024-11-20T15:12:39Z source: APNIC role: ABUSE CHOOPALLCAP country: ZZ address: 100 Matawan Rd, Matawan NJ 07747 phone: +000000000 e-mail: [email protected] admin-c: CLA15-AP tech-c: CLA15-AP nic-hdl: AC1765-AP remarks: Generated from irt object IRT-CHOOPALLC-AP remarks: [email protected] was validated on 2024-11-20 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2024-11-20T15:13:19Z source: APNIC role: Choopa LLC administrator address: 319 Clematis St. Suite 900 country: US phone: +1-973-849-0500 fax-no: +1-973-849-0500 e-mail: [email protected] admin-c: CLA15-AP tech-c: CLA15-AP nic-hdl: CLA15-AP mnt-by: MAINT-CHOOPALLC-AP last-modified: 2022-07-19T11:35:13Z source: APNIC
references
may_14_report-20240514085413-7941_0_Table_View_of_Connection_Events.csv

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 1 month ago
Appeared in 7 threat reports