IOC Radar
IPMediumSignal 45/100

146.56.133.63

Location
Korea, Republic ofKorea, Republic of
Seoul, Seoul
ASN
AS31898
Oracle Cloud Infrastructure (ap-seoul-1)
First Seen
May 5, 2026
Last Seen
Jun 5, 2026
May 5
First Seen
36d ago
Jun 5
Last Seen
5d ago
5
Reports
source reports
45%
Confidence
medium
2/91
VirusTotal
detections
Found in 5 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
45%
Signal Score
45 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryKRKorea, Republic of
RegionSeoul, Seoul
ASNAS31898
OrganizationOracle Cloud Infrastructure (ap-seoul-1)

IP Category

Proxy
Proxy server

Feed Intelligence Summary

5 reports45% confidence
5
Source reports
45%
Confidence score
Category tags
active scanasiabrute forcebrute-forcecloud computingcloud infrastructurecloud migrationcloud securitycloud storagedata store exposureexploitation activityexploited hostindicatorkrmalwaremulti-cloud managementnetworkproxyresearchedscannerself-signedsouth koreasshtor nodeweb app attack

Activity Timeline

1 total obs
Jun 5Jun 5

Threat Activity Heatmap

· Peak: 2026-06-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
45
SIGNAL
Signal Score
45%
Confidence
5
Reports
First seenMay 5, 2026
Last seenJun 5, 2026
GeolocationKR
CountryKorea, Republic of
LocationSeoul, Seoul
ASNAS31898
OrgOracle Cloud Infrastructure (ap-seoul-1)
Coords37.5307, 126.8760
Proxy

VirusTotal

2/ 91vendors flagged
2% detection rateJun 7, 2026

WHOIS

raw
inetnum: 146.56.0.0 - 146.56.191.255 netname: ORACLECORP descr: Oracle Corporation , Global software solutions , California , USA country: JP org: ORG-OC1-AP admin-c: OCNA1-AP tech-c: OCNA1-AP abuse-c: AO215-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-ORACLEV6-AP mnt-routes: MAINT-ORACLEV6-AP mnt-irt: IRT-ORACLEV6-AP last-modified: 2020-05-20T13:04:39Z source: APNIC irt: IRT-ORACLEV6-AP address: 500 Oracle Parkway address: M/S 501ip3 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: OCNA1-AP tech-c: OCNA1-AP auth: # Filtered remarks: [email protected] was validated on 2026-01-30 mnt-by: MAINT-ORACLEV6-AP last-modified: 2026-02-06T14:43:21Z source: APNIC organisation: ORG-OC1-AP org-name: Oracle Corporation org-type: LIR country: US address: 2300 Oracle Way phone: +1.6505062220 fax-no: +1.6505062120 e-mail: [email protected] mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2023-09-05T02:15:43Z source: APNIC role: ABUSE ORACLEV6AP country: ZZ address: 500 Oracle Parkway address: M/S 501ip3 phone: +000000000 e-mail: [email protected] admin-c: OCNA1-AP tech-c: OCNA1-AP nic-hdl: AO215-AP remarks: Generated from irt object IRT-ORACLEV6-AP remarks: [email protected] was validated on 2026-01-30 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2026-01-30T02:57:25Z source: APNIC role: ORACLE CORPORATION - network administrator address: 500 Oracle Parkway address: M/S 501ip3 country: US phone: +1.6505062220 fax-no: +1.6505062220 e-mail: [email protected] admin-c: OCNA1-AP tech-c: OCNA1-AP nic-hdl: OCNA1-AP mnt-by: MAINT-ORACLEV6-AP last-modified: 2014-09-12T11:39:45Z source: APNIC route: 146.56.128.0/18 origin: AS31898 descr: Oracle Corporation 2300 Oracle Way mnt-by: MAINT-ORACLEV6-AP last-modified: 2025-09-26T06:22:10Z source: APNIC

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 5 days ago
Appeared in 5 threat reports